Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21820 matches found

Cvelist
Cvelistadded 2026/04/06 5:30 a.m.24 views

CVE-2026-5628 Belkin F9K1015 Setting formSetSystemSettings stack-based overflow

A security vulnerability has been detected in Belkin F9K1015 1.00.10. Impacted is the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. The manipulation of the argument webpage leads to stack-based buffer overflow. Remote exploitation of th...

9CVSS0.00108EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2026/04/06 5:24 a.m.3 views

CVE-2026-5527

A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 Private Key Handler. This manipulation causes use of hard-coded cryptographic key . It is possible t...

6.9CVSS5.9AI score0.00013EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/06 5:24 a.m.4 views

CVE-2026-5542

A vulnerability was determined in code-projects Simple Laundry System 1.0. Impacted is an unknown function of the file /modstaffinfo.php of the component Parameter Handler. Executing a manipulation of the argument userid can lead to cross site scripting. The attack may be launched remotely. The...

5.3CVSS4.2AI score0.00013EPSS
Exploits0References1
NVD
NVDadded 2026/04/06 5:16 a.m.2 views

CVE-2026-5620

A vulnerability has been found in itsourcecode Construction Management System 1.0. Affected is an unknown function of the file /borrowedequipreport.php of the component Parameter Handler. The manipulation of the argument Home leads to sql injection. It is possible to initiate the attack remotely...

6.5CVSS0.00043EPSS
Exploits0References6
NVD
NVDadded 2026/04/06 5:16 a.m.3 views

CVE-2026-5622

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS0.00038EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/06 4:30 a.m.4 views

CVE-2026-5622

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS5.3AI score0.00038EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/06 4:30 a.m.2 views

CVE-2026-5622 hcengineering Huly Platform JWT Token token.ts hard-coded key

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS5.3AI score0.00038EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/06 4:30 a.m.29 views

CVE-2026-5622 hcengineering Huly Platform JWT Token token.ts hard-coded key

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS0.00038EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/06 4:0 a.m.2 views

CVE-2026-5620

A vulnerability has been found in itsourcecode Construction Management System 1.0. Affected is an unknown function of the file /borrowedequipreport.php of the component Parameter Handler. The manipulation of the argument Home leads to sql injection. It is possible to initiate the attack remotely...

6.5CVSS6.5AI score0.00043EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2026/04/06 4:0 a.m.6 views

CVE-2026-5620

CVE-2026-5620 affects itsourcecode Construction Management System 1.0. The vulnerable element is an unknown function in the file /borrowed_equip_report.php within the Parameter Handler component. Manipulating the argument Home leads to a SQL injection . It can be exploited remotely, and the explo...

6.5CVSS6.5AI score0.00043EPSS
Exploits0References6
EUVD
EUVDadded 2026/04/06 3:30 a.m.1 views

EUVD-2026-19148

A flaw has been found in Tenda i12 1.0.0.113862. Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset of the component Parameter Handler. This manipulation of the argument index/wlradio causes stack-based buffer overflow. It is possible to initiate the...

9CVSS7.7AI score0.00092EPSS
Exploits1References6
EUVD
EUVDadded 2026/04/06 3:30 a.m.0 views

EUVD-2026-19144

A security vulnerability has been detected in imprvhub mcp-browser-agent up to 0.8.0. This impacts the function CallToolRequestSchema of the file src/handlers.ts of the component URL Parameter Handler. The manipulation of the argument request.params.name/request.params.arguments leads to...

6.5CVSS6.1AI score0.00024EPSS
Exploits0References5
CVE
CVEadded 2026/04/06 1:15 a.m.5 views

CVE-2026-5609

CVE-2026-5609 affects Tenda i12 1.0.0.11(3862). The vulnerability is a stack-based buffer overflow in the formwrlSSIDset function of /goform/wifiSSIDset (Parameter Handler), triggered by manipulating the argument index/wl_radio. It can be exploited remotely and an exploit has been published. No r...

9CVSS7.7AI score0.00092EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/04/06 1:15 a.m.3 views

CVE-2026-5609

A flaw has been found in Tenda i12 1.0.0.113862. Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset of the component Parameter Handler. This manipulation of the argument index/wlradio causes stack-based buffer overflow. It is possible to initiate the...

9CVSS7.7AI score0.00092EPSS
Exploits1References5Affected Software1
EUVD
EUVDadded 2026/04/06 12:30 a.m.2 views

EUVD-2026-19132

A vulnerability was found in Acrel Electrical Prepaid Cloud Platform 1.0. This issue affects some unknown processing of the file /bin.rar of the component Backup File Handler. The manipulation results in information disclosure. The attack can be launched remotely. The exploit has been made public...

6.9CVSS5.4AI score0.00042EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/06 12:30 a.m.2 views

EUVD-2026-19138

A security flaw has been discovered in Tenda CH22 1.0.0.1. The impacted element is the function formCertLocalPrecreate of the file /goform/CertLocalPrecreate of the component Parameter Handler. Performing a manipulation of the argument standard results in stack-based buffer overflow. Remote...

9CVSS7.5AI score0.00022EPSS
Exploits1References6
NVD
NVDadded 2026/04/06 12:16 a.m.1 views

CVE-2026-5606

A security flaw has been discovered in PHPGurukul Online Shopping Portal Project 2.1. The affected element is an unknown function of the file /order-details.php of the component Parameter Handler. The manipulation of the argument orderid results in sql injection. It is possible to launch the atta...

6.5CVSS0.00012EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 12:15 a.m.1 views

CVE-2026-5607

A security vulnerability has been detected in imprvhub mcp-browser-agent up to 0.8.0. This impacts the function CallToolRequestSchema of the file src/handlers.ts of the component URL Parameter Handler. The manipulation of the argument request.params.name/request.params.arguments leads to...

6.5CVSS6.1AI score0.00024EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/06 12:0 a.m.2 views

CVE-2026-5606 PHPGurukul Online Shopping Portal Project Parameter order-details.php sql injection

A security flaw has been discovered in PHPGurukul Online Shopping Portal Project 2.1. The affected element is an unknown function of the file /order-details.php of the component Parameter Handler. The manipulation of the argument orderid results in sql injection. It is possible to launch the atta...

6.5CVSS6.5AI score0.00012EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 12:0 a.m.2 views

CVE-2026-5606

A security flaw has been discovered in PHPGurukul Online Shopping Portal Project 2.1. The affected element is an unknown function of the file /order-details.php of the component Parameter Handler. The manipulation of the argument orderid results in sql injection. It is possible to launch the atta...

6.5CVSS6.5AI score0.00012EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder