CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE Linux•added 2026/05/31 3:6 p.m.•13 views

Security update for the Linux Kernel (Live Patch 21 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.92 fixes various security issues The following security issues were fixed: CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption bsc1264096. CVE-2026-23243: RDMA/umad: Reject negative datalen in ibumadwrite bsc1259798. CVE-2026-23274...

8.8CVSS6.4AI score0.03663EPSS

Exploits15References24

CVE•added 2026/05/31 3:0 p.m.•21 views

CVE-2026-10189

CVE-2026-10189 affects Tenda W12 3.0.0.7(4763). The vulnerability is in the cgiSysTimeInfoSet function of /bin/httpd; manipulating the argument sec triggers a stack‑based buffer overflow. It can be exploited remotely, and a public exploit has been disclosed. CVSS metrics indicate HIGH severity (n...

9CVSS7.8AI score0.00503EPSS

Cvelist•added 2026/05/31 3:0 p.m.•29 views

CVE-2026-10189 Tenda W12 httpd cgiSysTimeInfoSet stack-based overflow

A vulnerability has been found in Tenda W12 3.0.0.74763. This vulnerability affects the function cgiSysTimeInfoSet of the file /bin/httpd. The manipulation of the argument sec leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to t...

9CVSS0.00503EPSS

ATTACKERKB•added 2026/05/31 3:0 p.m.•10 views

CVE-2026-10189

9CVSS7.8AI score0.00503EPSS

EUVD•added 2026/05/31 3:0 p.m.•13 views

EUVD-2026-33511

9CVSS7.8AI score0.00503EPSS

Vulnrichment•added 2026/05/31 2:30 p.m.•11 views

CVE-2026-10188 Tenda W12 httpd cgistaKickOff stack-based overflow

A flaw has been found in Tenda W12 3.0.0.74763. This affects the function cgistaKickOff of the file /bin/httpd. Executing a manipulation of the argument staMac can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

9CVSS7.8AI score0.00476EPSS

Cvelist•added 2026/05/31 2:30 p.m.•39 views

CVE-2026-10188 Tenda W12 httpd cgistaKickOff stack-based overflow

9CVSS0.00476EPSS

ATTACKERKB•added 2026/05/31 2:30 p.m.•14 views

CVE-2026-10188

9CVSS7.8AI score0.00476EPSS

EUVD•added 2026/05/31 2:30 p.m.•11 views

EUVD-2026-33510

9CVSS7.8AI score0.00476EPSS

NVD•added 2026/05/31 2:16 p.m.•17 views

CVE-2026-10184

A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This impacts an unknown function of the file /classes/Users.php?f=delete. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been...

7.5CVSS0.00269EPSS

NVD•added 2026/05/31 2:16 p.m.•13 views

CVE-2026-10183

A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. This affects the function formWlanSetup of the file /goform/formWlanSetup. The manipulation of the argument enrollee leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit is publicly available and mig...

9CVSS0.00472EPSS

Exploits0References5

CVE•added 2026/05/31 2:15 p.m.•28 views

CVE-2026-10187

The CVE-2026-10187 entry concerns Totolink N300RH (firmware 6.1c.1353_B20190305). The vulnerability affects the Web Management Interface’s file wireless.so in the setWiFiBasicConfig function; manipulating the argument KeyStr triggers a stack-based buffer overflow. This enables remote code executi...

10CVSS7.9AI score0.01425EPSS

Vulnrichment•added 2026/05/31 2:15 p.m.•10 views

CVE-2026-10187 Totolink N300RH Web Management wireless.so setWiFiBasicConfig stack-based overflow

10CVSS7.9AI score0.01425EPSS

Cvelist•added 2026/05/31 2:15 p.m.•35 views

CVE-2026-10187 Totolink N300RH Web Management wireless.so setWiFiBasicConfig stack-based overflow

10CVSS0.01425EPSS

EUVD•added 2026/05/31 2:15 p.m.•11 views

EUVD-2026-33509

10CVSS7.9AI score0.01425EPSS

Cvelist•added 2026/05/31 2:0 p.m.•35 views

CVE-2026-10186 code-projects Online Hospital Management System patient.php sql injection

A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /patient.php. Such manipulation of the argument editid leads to sql injection. The attack can be executed remotely. The exploit...

7.5CVSS0.00269EPSS

ATTACKERKB•added 2026/05/31 2:0 p.m.•13 views

CVE-2026-10186

7.5CVSS6.9AI score0.00269EPSS

CVE•added 2026/05/31 2:0 p.m.•19 views

CVE-2026-10186

Code-projects Online Hospital Management System 1.0 contains an SQL injection vulnerability in the /patient.php endpoint, triggered by manipulating the editid parameter. The flaw allows remote exploitation and has publicly disclosed exploit details. Multiple CVSS metrics across versions (e.g., CV...

7.5CVSS6.9AI score0.00269EPSS

ATTACKERKB•added 2026/05/31 1:45 p.m.•10 views

CVE-2026-10185

A weakness has been identified in SourceCodester Hospitals Patient Records Management System 1.0. Affected is an unknown function of the file /classes/Users.php?f=save. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been...

7.5CVSS6.9AI score0.00269EPSS