Lucene search
K

305 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/08 11:45 a.m.6 views

CVE-2026-11511

A weakness has been identified in Bolt CMS up to 3.7.5. This vulnerability affects unknown code of the file src/Storage/Field/Type/TextType.php of the component HTML Attribute Handler. Executing a manipulation of the argument style can lead to HTML injection. It is possible to launch the attack...

5.1CVSS5.3AI score0.00191EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:19 p.m.11 views

CVE-2026-5980

A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /goform/formSetMACFilter of the component POST Request Handler. This manipulation of the argument curTime causes buffer overflow. The attack may be initiated remotely. The exploit...

9CVSS8.2AI score0.00676EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:19 p.m.10 views

CVE-2026-10067

A vulnerability was detected in Shibby Tomato 1.28. Impacted is the function sub90F0 of the file multimon.cgi. The manipulation results in stack-based buffer overflow. The attack can be launched remotely. This project is superseded by FreshTomato. This vulnerability only affects products that are...

9CVSS8.4AI score0.00438EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:17 p.m.10 views

CVE-2026-6014

A flaw has been found in D-Link DIR-513 1.10. This issue affects the function formAdvanceSetup of the file /goform/formAdvanceSetup of the component POST Request Handler. This manipulation of the argument webpage causes buffer overflow. It is possible to initiate the attack remotely. The exploit...

9CVSS8.1AI score0.00734EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/05/31 12:0 a.m.12 views

PT-2026-45162

A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is the function formPortFw of the file /goform/formPortFw. The manipulation of the argument server name results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been released ...

9CVSS7.8AI score0.00463EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/29 3:0 p.m.12 views

EUVD-2026-33331

A weakness has been identified in Shibby Tomato 1.28. This vulnerability affects the function getupsfield of the file tomatodata.cgi. Executing a manipulation of the argument Date can lead to stack-based buffer overflow. It is possible to launch the attack remotely. This project is superseded by...

9CVSS7.8AI score0.00438EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.14 views

PT-2026-44885

A security vulnerability has been detected in Shibby Tomato up to 1.28. This issue affects the function sub 9068 of the file tomatoups.cgi of the component UPS Service. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. This project is superseded by...

9CVSS6.1AI score0.00438EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.16 views

PT-2026-42908

CVE-2026-8352 - Apache Apache HTTP Server Remote Code Execution CVE ID :CVE-2026-8352 Published : May 21, 2026, 9:16 p.m. | 22 minutes ago Description :Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in...

5.9AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/04 6:15 a.m.6 views

CVE-2026-7739

A weakness has been identified in justdan96 tsMuxer up to 2.7.0. This vulnerability affects the function HevcVpsUnit::setFPS of the file /AFLplusplus/tsMuxerprev/tsMuxer/hevc.cpp. This manipulation of the argument trackid causes denial of service. The attack requires local access. The exploit has...

4.8CVSS5.5AI score0.00113EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/05/03 11:0 a.m.7 views

EUVD-2026-26831

A vulnerability was detected in Wavlink WL-WN570HA1 R70HA1 V1410221110. The affected element is the function pingddns of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument DDNS results in command injection. The attack can be initiated remotely. The exploit is now public and may ...

6.5CVSS6.4AI score0.03191EPSS
Exploits1References4
CVE
CVE
added 2026/05/03 10:15 a.m.21 views

CVE-2026-7691

Technical details about CVE-2026-7691 are not publicly available in the provided documents. Monitor for updates from vendors or security advisories; no product versions, impact, or remediation are disclosed here.

6.5CVSS6.4AI score0.03191EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/02 6:45 a.m.12 views

CVE-2026-7606

A weakness has been identified in TRENDnet TEW-821DAP 1.12B01. This issue affects the function findhwid/newguiupdatefirmware of the component Firmware Update Handler. Executing a manipulation of the argument dest can lead to insufficient verification of data authenticity. The attack can be launch...

6.3CVSS5.4AI score0.00234EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/30 10:45 p.m.5 views

CVE-2026-7508 Bootstrap CMS Page Creation show.blade.php code injection

A vulnerability was found in Bootstrap CMS 0.9.0-alpha. Affected is an unknown function of the file resources/views/pages/show.blade.php of the component Page Creation Handler. Performing a manipulation of the argument body results in code injection. Remote exploitation of the attack is possible...

6.5CVSS6.3AI score0.00233EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/04/27 10:15 p.m.4 views

CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

5.3CVSS5.2AI score0.00173EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.10 views

PT-2026-35536

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function read null terminated string of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.file name leads to path...

5.3CVSS5.3AI score0.00173EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/26 11:45 p.m.7 views

EUVD-2026-25739

A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBDprocess of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. The attack can only be initiated within the local network. The exploit is publicly available and might be used...

8.8CVSS5.7AI score0.01871EPSS
Exploits1References5
NVD
NVD
added 2026/04/26 10:17 p.m.12 views

CVE-2026-7043

A vulnerability has been found in GreenCMS up to 2.3. This impacts the function pluginAddLocal of the file /index.php?m=admin&c=custom&a=pluginadd. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Th...

6.5CVSS0.00201EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/10 6:31 a.m.6 views

EUVD-2026-21310

A flaw has been found in D-Link DIR-513 1.10. This issue affects the function formAdvanceSetup of the file /goform/formAdvanceSetup of the component POST Request Handler. This manipulation of the argument webpage causes buffer overflow. It is possible to initiate the attack remotely. The exploit...

9CVSS7.5AI score0.00734EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.14 views

PT-2026-31872

Name of the Vulnerable Software and Affected Versions D-Link DIR-513 version 1.10 Description A security issue has been identified in D-Link DIR-513 version 1.10. The formSetPassword function within the POST Request Handler component, located in the file /goform/formSetPassword, is susceptible to...

9CVSS7.7AI score0.00715EPSS
Exploits1References13
Vulnrichment
Vulnrichment
added 2026/04/09 9:0 p.m.2 views

CVE-2026-5980 D-Link DIR-605L POST Request formSetMACFilter buffer overflow

A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /goform/formSetMACFilter of the component POST Request Handler. This manipulation of the argument curTime causes buffer overflow. The attack may be initiated remotely. The exploit...

9CVSS7.7AI score0.00676EPSS
Exploits1References5
Rows per page
Query Builder