Lucene search
K

41186 matches found

NVD
NVD
added 2 days ago8 views

CVE-2026-13518

A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument page leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the publ...

9CVSS0.00466EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago30 views

CVE-2026-13521 SourceCodester Class and Exam Timetabling System preview5.php sql injection

A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0/5.php. Affected by this vulnerability is an unknown functionality of the file /preview5.php. Such manipulation of the argument courseyearsection leads to sql injection. The attack may be performed from remote...

7.5CVSS0.00269EPSS
Exploits0References6
CVE
CVE
added 2 days ago11 views

CVE-2026-13521

The CVE concerns SourceCodester Class and Exam Timetabling System (1.0/5.php). The vulnerability is a SQL injection in an unknown function of /preview5.php, triggered by manipulating the course_year_section parameter. This is a network-accessible issue with a public exploit and PoC; impact is des...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6
CVE
CVE
added 2 days ago9 views

CVE-2026-13520

The CVE describes a SQL injection in itsourcecode Hospital Management System v1.0, affecting the file /appointmentapproval.php (component: Appointment Handler). The vulnerability is triggered by manipulating the editid parameter, enabling remote exploitation. Exploit evidence is indicated as publ...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
EUVD
EUVD
added 2 days ago6 views

EUVD-2026-40008

A vulnerability was determined in VoltAgent up to 2.1.17. Affected by this issue is the function handleGetMemoryConversation of the file packages/server-core/src/handlers/memory.handlers.ts of the component Memory REST API. Executing a manipulation of the argument conversationId can lead to...

3.1CVSS5.2AI score0.0022EPSS
Exploits0References8
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-40007

A vulnerability was found in SimStudioAI sim up to 0.6.92. Affected by this vulnerability is an unknown functionality in the library apps/sim/lib/core/security/deployment.ts of the component Password Protection Handler. Performing a manipulation results in use of weak hash. The attack is possible...

6.3CVSS5AI score0.00216EPSS
Exploits0References8
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-40009

A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::statekey of the file src/query/service/src/servers/http/v1/session/clientsessionmanager.rs of the component Tenant Handler. The manipulation leads to authorization bypass. It is...

6.5CVSS6.2AI score0.0022EPSS
Exploits0References7
EUVD
EUVD
added 2 days ago8 views

EUVD-2026-40004

A vulnerability was detected in volcengine OpenViking up to 0.3.21. This affects the function strtouint64 of the file openviking/storage/vectordb/utils/strtouint64.py of the component Local VectorDB Primary-key Label Handler. The manipulation of the argument ID results in insufficient verificatio...

5CVSS5.5AI score0.00138EPSS
Exploits0References8
EUVD
EUVD
added 2 days ago8 views

EUVD-2026-40016

A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been made public and could ...

9CVSS8AI score0.00466EPSS
Exploits0References6
CVE
CVE
added 2 days ago13 views

CVE-2026-13519

The CVE-2026-13519 entry describes a stack-based buffer overflow in Tenda JD12L (version 16.03.53.23) within the fromNatStaticSetting function of /goform/NatStaticSetting. The vulnerability is triggered by manipulation of an input argument (page), allowing remote execution without user interactio...

9CVSS8AI score0.00466EPSS
Exploits0References6
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-40015

A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument page leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the publ...

9CVSS7.6AI score0.00466EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago32 views

CVE-2026-13517 Tenda JD12L WifiBasicSet formWifiBasicSet stack-based overflow

A flaw has been found in Tenda JD12L 16.03.53.23. The impacted element is the function formWifiBasicSet of the file /goform/WifiBasicSet. Executing a manipulation of the argument security5g can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been publishe...

9CVSS0.00466EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2 days ago10 views

PT-2026-53306

Name of the Vulnerable Software and Affected Versions Edimax EW-7478APC version 1.04 Description A buffer overflow exists in the POST Request Handler component. This issue occurs when the formUSBAccount function in the '/goform/formUSBAccount' endpoint processes the UserName and Password argument...

9CVSS7.6AI score0.00455EPSS
Exploits0References7
Cvelist
Cvelist
added 3 days ago33 views

CVE-2026-13516 Tenda JD12L WifiGuestSet fromSetWifiGusetBasic stack-based overflow

A vulnerability was detected in Tenda JD12L 16.03.53.23. The affected element is the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet. Performing a manipulation of the argument shareSpeed results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is n...

9CVSS0.00466EPSS
Exploits0References6
CVE
CVE
added 3 days ago11 views

CVE-2026-13516

CVE-2026-13516 affects Tenda JD12L 16.03.53.23. The vulnerable element is the function fromSetWifiGusetBasic in /goform/WifiGuestSet; manipulating the argument shareSpeed results in a stack-based buffer overflow. The attack can be initiated remotely, and public exploits exist. No remediation deta...

9CVSS8AI score0.00466EPSS
Exploits0References6
CVE
CVE
added 3 days ago17 views

CVE-2026-13515

Affected product/version: Tenda JD12L 16.03.53.23. Vulnerable component: function formSetPPTPServer in /goform/SetPptpServerCfg. Issue: manipulation of the argument startIp leads to a stack-based buffer overflow. Impact: remote attacker can exploit; CVE entry indicates high impact with potential ...

9CVSS8AI score0.00476EPSS
Exploits0References6
NVD
NVD
added 3 days ago9 views

CVE-2026-13510

A vulnerability was found in SimStudioAI sim up to 0.6.92. Affected by this vulnerability is an unknown functionality in the library apps/sim/lib/core/security/deployment.ts of the component Password Protection Handler. Performing a manipulation results in use of weak hash. The attack is possible...

6.3CVSS0.00216EPSS
Exploits0References7
CVE
CVE
added 3 days ago12 views

CVE-2026-13513

Summary: CVE-2026-13513 affects MyScale MyScaleDB up to 1.8.0, impacting SegmentId::getCacheKey in src/VectorIndex/Common/SegmentId.h. The issue is described as insufficient verification of data authenticity and can be exploited remotely with high attack complexity; exploit maturity is labeled as...

5CVSS5.4AI score0.00133EPSS
Exploits0References7
Cvelist
Cvelist
added 3 days ago35 views

CVE-2026-13513 MyScale MyScaleDB SegmentId.h getCacheKey data authenticity

A security flaw has been discovered in MyScale MyScaleDB up to 1.8.0. This vulnerability affects the function SegmentId::getCacheKey in the library src/VectorIndex/Common/SegmentId.h. The manipulation results in insufficient verification of data authenticity. It is possible to launch the attack...

5CVSS0.00133EPSS
Exploits0References7
Cvelist
Cvelist
added 3 days ago22 views

CVE-2026-13512 Databend Tenant client_session_manager.rs state_key authorization

A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::statekey of the file src/query/service/src/servers/http/v1/session/clientsessionmanager.rs of the component Tenant Handler. The manipulation leads to authorization bypass. It is...

6.5CVSS0.0022EPSS
Exploits0References6
Rows per page
Query Builder