Lucene search
K

220867 matches found

Cvelist
Cvelist
added 2026/05/26 12:0 p.m.37 views

CVE-2026-9542 CodeAstro Leave Management System add_staff.php sql injection

A weakness has been identified in CodeAstro Leave Management System 1.0. The affected element is an unknown function of the file /admin/addstaff.php. Executing a manipulation of the argument emailid can lead to sql injection. The attack can be launched remotely. The exploit has been made availabl...

6.5CVSS0.00196EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/26 12:0 p.m.10 views

EUVD-2026-31815

A weakness has been identified in CodeAstro Leave Management System 1.0. The affected element is an unknown function of the file /admin/addstaff.php. Executing a manipulation of the argument emailid can lead to sql injection. The attack can be launched remotely. The exploit has been made availabl...

6.5CVSS6.5AI score0.00196EPSS
Exploits0References5
CVE
CVE
added 2026/05/26 12:0 p.m.17 views

CVE-2026-9542

CodeAstro Leave Management System 1.0 has a SQL injection vulnerability in /admin/add_staff.php via manipulating the email_id parameter. The issue arises from an as‑yet unnamed function and is exploitable remotely, with public exploits available. CVSS metrics are provided (e.g., COND/PR/L impacts...

6.5CVSS6.5AI score0.00196EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/26 11:45 a.m.40 views

CVE-2026-9541 Squirrel Cnut File sqobject.cpp ReadObject heap-based overflow

A security flaw has been discovered in Squirrel up to 3.2. Impacted is the function ReadObject of the file squirrel/sqobject.cpp of the component Cnut File Handler. Performing a manipulation results in heap-based buffer overflow. The attack is only possible with local access. The exploit has been...

5.3CVSS0.0017EPSS
Exploits1References5
EUVD
EUVD
added 2026/05/26 11:45 a.m.10 views

EUVD-2026-31813

A security flaw has been discovered in Squirrel up to 3.2. Impacted is the function ReadObject of the file squirrel/sqobject.cpp of the component Cnut File Handler. Performing a manipulation results in heap-based buffer overflow. The attack is only possible with local access. The exploit has been...

5.3CVSS6AI score0.0017EPSS
Exploits1References5
CVE
CVE
added 2026/05/26 11:45 a.m.23 views

CVE-2026-9541

CVE-2026-9541 affects Squirrel up to 3.2, specifically the ReadObject function in squirrel/sqobject.cpp of the Cnut File Handler. The issue is a heap-based buffer overflow triggered by manipulation of input, with local attack vectors. Public exploit has been released; the vendor was notified earl...

5.3CVSS6.1AI score0.0017EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2026/05/26 10:30 a.m.11 views

EUVD-2026-31810

A vulnerability was identified in vllm-project vllm 0.19.0. This issue affects some unknown processing of the component OpenAI-compatible Serving Path. Such manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit is publicly available and might be used...

6.9CVSS5.8AI score0.00427EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/05/26 10:30 a.m.9 views

CVE-2026-9540

A vulnerability was identified in vllm-project vllm 0.19.0. This issue affects some unknown processing of the component OpenAI-compatible Serving Path. Such manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit is publicly available and might be used...

6.9CVSS5.8AI score0.00427EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/05/26 10:30 a.m.35 views

CVE-2026-9540

CVE-2026-9540 affects vllm-project vllm 0.19.0, specifically an issue in the OpenAI-compatible Serving Path that allows remote manipulation leading to a denial of service. The vulnerability’s exploitation is described as publicly available, with a pull request to fix it awaiting acceptance. CVSS ...

6.9CVSS5.8AI score0.00427EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/05/26 10:30 a.m.42 views

CVE-2026-9540 vllm-project vllm OpenAI-compatible Serving Path denial of service

A vulnerability was identified in vllm-project vllm 0.19.0. This issue affects some unknown processing of the component OpenAI-compatible Serving Path. Such manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit is publicly available and might be used...

6.9CVSS0.00427EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2026/05/26 10:25 a.m.27 views

CVE

...

5.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/26 9:39 a.m.11 views

CVE-2026-44410

This vulnerability stems from a business logic flaw.Attackers can exploit legitimate application functions in unintended and abnormal ways, deviating from the designer's expectations, to carry out malicious attacks...

3.8CVSS5.8AI score0.00131EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2026/05/26 9:30 a.m.20 views

mysql: InnoDB unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via...

4.9CVSS7.2AI score0.00323EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/05/26 8:41 a.m.81 views

AI_AutoExploitGeneration

🎯 AI-POWERED AUTOMATED EXPLOIT GENERATION AEG SYSTEM Vers...

5.9AI score
Exploits0
NVD
NVD
added 2026/05/26 7:16 a.m.10 views

CVE-2026-9533

A vulnerability was detected in Totolink CA750-PoE 6.2c.510. The impacted element is the function recvUpgradeNewFw of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Performing a manipulation of the argument fwUrl/magicid results in os command injection. It is possible to initiate...

6.5CVSS0.01803EPSS
Exploits0References5
NVD
NVD
added 2026/05/26 7:16 a.m.10 views

CVE-2026-9534

A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument PIN can lead to os command injection. It is possible to launch the attack remotely. The...

6.5CVSS0.01803EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/26 6:51 a.m.10 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/26 6:45 a.m.12 views

CVE-2026-8046 Incorrect Authorization in CODESYS Control

The affected products insufficiently verify authorization when deleting user accounts. An authenticated, low-privileged remote user can exploit this vulnerability to delete other users, including those with higher privileges...

8.1CVSS5.8AI score0.00348EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/26 6:40 a.m.10 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/05/26 6:10 a.m.86 views

Exploit for CVE-2026-6741

CVE-2026-6741 CVE-2026-6741 is a CVSS 8.8 High Authenticated...

8.8CVSS5.7AI score0.00293EPSS
Exploits1
Rows per page
Query Builder