Lucene search
K

18854 matches found

Snyk
Snyk
added 2026/06/22 10:21 p.m.6 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition in the HTTP Agent. An attacker can cause a client to accept a response as valid before the client has sent its request by exploiting the timing of HTTP responses. Remediation A fix was...

6.3CVSS6.2AI score0.00359EPSS
Exploits1References2
NVD
NVD
added 2026/06/21 8:16 p.m.12 views

CVE-2026-12805

A flaw has been found in OFFIS DCMTK up to 3.7.0. The affected element is the function XMLNode::parseFile in the library ofstd/libsrc/ofxml.cc. Executing a manipulation can lead to heap-based buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

7.5CVSS0.00279EPSS
Exploits0References8
Snyk
Snyk
added 2026/06/21 5:11 p.m.4 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound due to improper handling of integer values in the copyString function. An attacker can cause memory corruption or potentially execute arbitrary code by providing specially crafted input that triggers the...

7.5CVSS6.2AI score0.00102EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/21 5:9 p.m.4 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound due to improper validation in the XMLParseBuffer function. An attacker can cause unexpected behavior, including potential data corruption or application crashes, by providing specially crafted input that...

7.5CVSS5.9AI score0.00102EPSS
Exploits0References2
CVE
CVE
added 2026/06/21 4:45 a.m.22 views

CVE-2026-12776

Montodel House-Rental-Management is affected by an SQL injection in /index.php?page=houses triggered by manipulating the ID parameter. The flaw affects the application as a whole with a remote-access exploit published and the vendor pursuing a rolling-release strategy, making exact affected versi...

6.5CVSS6.3AI score0.00192EPSS
Exploits0References5
Snyk
Snyk
added 2026/06/18 1:15 p.m.4 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write via the MagicYUV decoder process in the libavcodec library. An attacker can cause a denial of service or potentially execute arbitrary code by submitting a specially crafted file that triggers an odd sliceheight valu...

8.8CVSS7.5AI score0.00477EPSS
Exploits3References2
Circl
Circl
added 2026/06/17 3:22 a.m.4 views

CVE-2026-55187

creationtimestamp| type| source ---|---|--- 2026-06-17 03:22:25+00:00| published-proof-of-concept| https://github.com/axllent/mailpit/security/advisories/GHSA-w4mc-hhc6-xp28...

5.8AI score
Exploits0References1
Circl
Circl
added 2026/06/16 9:35 p.m.7 views

CVE-2026-54905

creationtimestamp| type| source ---|---|--- 2026-06-16 21:35:27+00:00| published-proof-of-concept| https://github.com/ruby-concurrency/concurrent-ruby/security/advisories/GHSA-wv3x-4vxv-whpp...

5.5CVSS5.8AI score0.00106EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 4:30 a.m.12 views

EUVD-2026-36692

A flaw has been found in Yealink SIP-T46U 108.86.0.118. The impacted element is the function moddiagnose.CommandShellByType of the file /api/diagnosis/start of the component Web FastCGI Service. This manipulation of the argument Time causes command injection. The attack can be initiated remotely...

6.5CVSS6.4AI score0.0105EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/15 12:31 a.m.12 views

EUVD-2026-36668

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in handler for custom url scheme. The attack can only be executed locally. The exploit has been...

5.3CVSS5.4AI score0.00105EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/15 12:30 a.m.9 views

EUVD-2026-36676

A flaw has been found in IObit Malware Fighter up to 13.2.0. Affected by this vulnerability is an unknown functionality of the component DLL Handler. This manipulation causes permission issues. The attack requires local access. The exploit has been published and may be used. The vendor was...

5.3CVSS5.4AI score0.00103EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/06/15 12:30 a.m.8 views

CVE-2026-12201 IObit Malware Fighter DLL permission

A flaw has been found in IObit Malware Fighter up to 13.2.0. Affected by this vulnerability is an unknown functionality of the component DLL Handler. This manipulation causes permission issues. The attack requires local access. The exploit has been published and may be used. The vendor was...

5.3CVSS5.3AI score0.00103EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/15 12:30 a.m.33 views

CVE-2026-12201 IObit Malware Fighter DLL permission

A flaw has been found in IObit Malware Fighter up to 13.2.0. Affected by this vulnerability is an unknown functionality of the component DLL Handler. This manipulation causes permission issues. The attack requires local access. The exploit has been published and may be used. The vendor was...

5.3CVSS0.00103EPSS
Exploits0References6
CVE
CVE
added 2026/06/15 12:30 a.m.18 views

CVE-2026-12201

CVE-2026-12201 affects IObit Malware Fighter (up to 13.2.0) via an unknown functionality in the DLL Handler component, where manipulation leads to permission issues. The flaw enables a local attacker with access to the system to trigger the vulnerability; an exploit has been published. The docume...

5.3CVSS5.4AI score0.00103EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.14 views

PT-2026-49615

CVE ID :CVE-2026-54294 Published : June 15, 2026, 6:33 p.m. | 1 hour, 17 minutes ago Description :None Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

5.2AI score0.00045EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.14 views

PT-2026-49151

A flaw has been found in IObit Malware Fighter up to 13.2.0. Affected by this vulnerability is an unknown functionality of the component DLL Handler. This manipulation causes permission issues. The attack requires local access. The exploit has been published and may be used. The vendor was...

5.3CVSS5AI score0.00103EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.15 views

PT-2026-49342

Name of the Vulnerable Software and Affected Versions Langflow versions prior to 1.10.0 Description The Shareable Playground feature, also known as Public Flows, allows unauthenticated users to execute workflows via a public link. A flaw in this feature enables arbitrary file reading depending on...

6.1CVSS6.1AI score0.00249EPSS
Exploits1References9
Circl
Circl
added 2026/06/13 3:0 p.m.6 views

CVE-2026-40864

creationtimestamp| type| source ---|---|--- 2026-06-13 15:00:07+00:00| published-proof-of-concept| Telegram/rpU80BAIqup9jbze7w25ozrvXdkaGKGrrCImb0BnEmBLEk...

5.4CVSS5.8AI score0.00159EPSS
Exploits1
Circl
Circl
added 2026/06/12 4:48 p.m.8 views

CVE-2026-54298

creationtimestamp| type| source ---|---|--- 2026-06-12 16:48:25+00:00| published-proof-of-concept| https://github.com/withastro/astro/security/advisories/GHSA-jrpj-wcv7-9fh9...

6.1CVSS4.9AI score0.0016EPSS
Exploits1References1
Circl
Circl
added 2026/06/11 9:48 p.m.8 views

CVE-2026-44311

creationtimestamp| type| source ---|---|--- 2026-06-11 21:48:31+00:00| published-proof-of-concept| https://github.com/fabricjs/fabric.js/security/advisories/GHSA-w22m-hvvm-xmwx...

6.1CVSS4.9AI score0.00194EPSS
Exploits1References1
Rows per page
Query Builder