Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11605 matches found

NVD
NVDadded 2026/04/06 9:16 p.m.3 views

CVE-2026-35472

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarTodos and nomeClasse=EstoqueControle...

6.1CVSS0.00224EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/04/06 9:12 p.m.2 views

CVE-2026-35473 WeGIA - Open Redirect - IentradaControle - listarId() - Unvalidated $_GET['nextPage']

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarId and nomeClasse=IentradaControle. T...

5.1CVSS6AI score0.00183EPSS
Exploits1References1
CVE
CVEadded 2026/04/06 9:12 p.m.6 views

CVE-2026-35473

WeGIA (Web manager for charitable institutions) prior to version 3.6.9 contained an open redirect vulnerability in the /WeGIA/controle/control.php endpoint. The issue arises from an unvalidated nextPage parameter when the request uses metodo=listarId and nomeClasse=IentradaControle, allowing atta...

6.1CVSS6AI score0.00183EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2026/04/06 9:12 p.m.13 views

CVE-2026-35473 WeGIA - Open Redirect - IentradaControle - listarId() - Unvalidated $_GET['nextPage']

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarId and nomeClasse=IentradaControle. T...

5.1CVSS0.00183EPSS
Exploits1References1
CVE
CVEadded 2026/04/06 9:5 p.m.13 views

CVE-2026-35472

WeGIA (Web manager for charitable institutions) has an Open Redirect in the /WeGIA/controle/control.php endpoint, exploitable via the nextPage parameter when used with metodo=listarTodos and nomeClasse=EstoqueControle. The application does not validate/restrict nextPage, enabling redirects to arb...

6.1CVSS6AI score0.00224EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2026/04/06 9:2 p.m.13 views

CVE-2026-35396 WeGIA - Open Redirect - IsaidaControle - listarId() - Unvalidated $_GET['nextPage']

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarId and nomeClasse=IsaidaControle. The...

5.1CVSS0.00224EPSS
Exploits1References1
EUVD
EUVDadded 2026/04/06 9:2 p.m.4 views

EUVD-2026-19496

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarId and nomeClasse=IsaidaControle. The...

5.1CVSS6AI score0.00224EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/04/06 8:48 p.m.0 views

CVE-2026-35392 goshs has an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs PUT Upload

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.3, PUT upload in httpserver/updown.go has no path sanitization. This vulnerability is fixed in 2.0.0-beta.3...

9.8CVSS5.9AI score0.00683EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/04/06 1:53 p.m.1 views

CVE-2026-34933

A flaw was found in Avahi. An unprivileged local user can exploit this vulnerability by sending a D-Bus method call with conflicting publish flags. This can lead to a denial of service DoS by crashing the avahi-daemon, making the service unavailable...

5.5CVSS5.8AI score0.00203EPSS
Exploits1References6
CVE
CVEadded 2026/04/06 1:0 p.m.7 views

CVE-2026-5659

The CVE-2026-5659 entry affects pytries datrie up to 0.8.3. The vulnerable elements are Trie.load, Trie.read, and Trie.setstate in src/datrie.pyx, with the described issue: deserialization leading to remote execution. The exploit is publicly disclosed and could be used. Connected sources consiste...

7.5CVSS6.2AI score0.00264EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.3 views

CVE-2026-5560

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing a manipulation of the argument paymethod results in sql injection. It is possible to initiate the...

6.5CVSS6.4AI score0.00246EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2026/04/06 10:5 a.m.138 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

Demonstration of the Log4jShell Exploit This code may contain...

10CVSS5.9AI score0.99999EPSS
Exploits346
Positive Technologies
Positive Technologiesadded 2026/04/06 12:0 a.m.3 views

PT-2026-30734

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarId and nomeClasse=IsaidaControle. The...

5.1CVSS6AI score0.00224EPSS
Exploits1References2
EUVD
EUVDadded 2026/04/05 12:30 p.m.2 views

EUVD-2026-19067

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing a manipulation of the argument paymethod results in sql injection. It is possible to initiate the...

6.5CVSS6.4AI score0.00246EPSS
Exploits0References6
NVD
NVDadded 2026/04/05 11:16 a.m.3 views

CVE-2026-5560

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing a manipulation of the argument paymethod results in sql injection. It is possible to initiate the...

6.5CVSS0.00246EPSS
Exploits0References5
CVE
CVEadded 2026/04/05 10:30 a.m.10 views

CVE-2026-5560

CVE-2026-5560 concerns PHPGurukul Online Shopping Portal Project 2.1. The vulnerable element is an unknown function in /payment-method.php within the Parameter Handler component. A manipulated paymethod argument enables SQL injection, with remote exploit possibility and a publicly available explo...

6.5CVSS6.4AI score0.00246EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/05 10:30 a.m.23 views

CVE-2026-5560 PHPGurukul Online Shopping Portal Project Parameter payment-method.php sql injection

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing a manipulation of the argument paymethod results in sql injection. It is possible to initiate the...

6.5CVSS0.00246EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/04/05 10:30 a.m.1 views

CVE-2026-5560 PHPGurukul Online Shopping Portal Project Parameter payment-method.php sql injection

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing a manipulation of the argument paymethod results in sql injection. It is possible to initiate the...

6.5CVSS6.4AI score0.00246EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/05 10:30 a.m.2 views

CVE-2026-5560

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing a manipulation of the argument paymethod results in sql injection. It is possible to initiate the...

6.5CVSS6.4AI score0.00246EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/04/05 12:0 a.m.4 views

PT-2026-30430

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing a manipulation of the argument paymethod results in sql injection. It is possible to initiate the...

6.5CVSS6.4AI score0.00246EPSS
Exploits0References6
Rows per page
Query Builder