Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

41168 matches found

EUVD
EUVDadded 2026/04/02 3:31 p.m.4 views

EUVD-2026-18346

A security vulnerability has been detected in Textpattern up to 4.9.1. Affected by this vulnerability is the function mtuploadImage of the file rpc/TXPRPCServer.php of the component XML-RPC Handler. The manipulation of the argument file.name leads to path traversal. Remote exploitation of the...

6.5CVSS5.4AI score0.00332EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/02 3:31 p.m.2 views

EUVD-2026-18344

A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikonloadpaddedpackedraw of the file src/decoders/decoderslibraw.cpp of the component TIFF/NEF. Executing a manipulation of the argument loadflags/rawwidth can lead to out-of-bounds read. It is possible to launch the...

6.9CVSS5.5AI score0.00735EPSS
Exploits1References9
EUVD
EUVDadded 2026/04/02 3:31 p.m.6 views

EUVD-2026-18340

A security vulnerability has been detected in Tenda G103 1.0.0.5. The affected element is the function actionsetsystemsettings of the file system.lua of the component Setting Handler. Such manipulation of the argument lanIp leads to command injection. The attack may be performed from remote. The...

5.8CVSS5.6AI score0.04353EPSS
Exploits1References6
EUVD
EUVDadded 2026/04/02 3:31 p.m.3 views

EUVD-2026-18215

A vulnerability was found in SourceCodester/mayurik Best Courier Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=deleteuser of the component User Delete Handler. Performing a manipulation of the argument ID results in improper access...

6.9CVSS6.3AI score0.00314EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/02 3:31 p.m.8 views

EUVD-2026-18214

A weakness has been identified in shsuishang modulithshop up to 829bac71f507e84684c782b9b062b8bf3b5585d6. The impacted element is the function listItem of the file src/main/java/com/suisung/shopsuite/pt/service/impl/ProductIndexServiceImpl.java of the component ProductItemDao Interface. Executing...

6.5CVSS6.4AI score0.00204EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/04/02 3:30 p.m.4 views

CVE-2026-5350

A security flaw has been discovered in Trendnet TEW-657BRM 1.00.1. The impacted element is the function updatepcdb of the file /setup.cgi. The manipulation of the argument macpcdba results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been released to the...

9CVSS7.8AI score0.00815EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2026/04/02 3:30 p.m.17 views

CVE-2026-5350 Trendnet TEW-657BRM setup.cgi update_pcdb stack-based overflow

A security flaw has been discovered in Trendnet TEW-657BRM 1.00.1. The impacted element is the function updatepcdb of the file /setup.cgi. The manipulation of the argument macpcdba results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been released to the...

9CVSS0.00815EPSS
Exploits1References4
CVE
CVEadded 2026/04/02 3:30 p.m.11 views

CVE-2026-5350

CVE-2026-5350 affects Trendnet TEW-657BRM running 1.00.1. The flaw is in function update_pcdb within /setup.cgi, where manipulating the mac_pc_dba argument causes a stack-based buffer overflow. Attack can be launched remotely and the exploit has been released publicly. The vendor notes the produc...

9CVSS7.8AI score0.00815EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2026/04/02 3:16 p.m.5 views

CVE-2026-5346

A vulnerability was determined in huimeicloud hmeditor up to 2.2.3. Impacted is the function client.get of the file src/mcp-server.js of the component image-to-base64 Endpoint. Executing a manipulation of the argument url can lead to server-side request forgery. It is possible to launch the attac...

7.5CVSS0.00278EPSS
Exploits0References4
NVD
NVDadded 2026/04/02 3:16 p.m.2 views

CVE-2026-5342

A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikonloadpaddedpackedraw of the file src/decoders/decoderslibraw.cpp of the component TIFF/NEF. Executing a manipulation of the argument loadflags/rawwidth can lead to out-of-bounds read. It is possible to launch the...

6.9CVSS0.00735EPSS
Exploits1References9
OSV
OSVadded 2026/04/02 3:16 p.m.1 views

DEBIAN-CVE-2026-5342

A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikonloadpaddedpackedraw of the file src/decoders/decoderslibraw.cpp of the component TIFF/NEF. Executing a manipulation of the argument loadflags/rawwidth can lead to out-of-bounds read. It is possible to launch the...

6.9CVSS5.1AI score0.00735EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/04/02 3:15 p.m.2 views

CVE-2026-5349

A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected element is the function addapcdb of the file /setup.cgi. The manipulation of the argument macpcdba leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be...

9CVSS7.8AI score0.00772EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2026/04/02 3:15 p.m.15 views

CVE-2026-5349

Trendnet TEW-657BRM (1.00.1) is affected by CVE-2026-5349 via the function add_apcdb in /setup.cgi. The mac_pc_dba argument manipulation causes a stack-based buffer overflow, and the vulnerability can be triggered remotely. An exploit is publicly available. The vendor notes the product has been d...

9CVSS7.8AI score0.00772EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2026/04/02 3:15 p.m.17 views

CVE-2026-5349 Trendnet TEW-657BRM setup.cgi add_apcdb stack-based overflow

A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected element is the function addapcdb of the file /setup.cgi. The manipulation of the argument macpcdba leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be...

9CVSS0.00772EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/04/02 3:0 p.m.23 views

CVE-2026-5346 huimeicloud hm_editor image-to-base64 Endpoint mcp-server.js client.get server-side request forgery

A vulnerability was determined in huimeicloud hmeditor up to 2.2.3. Impacted is the function client.get of the file src/mcp-server.js of the component image-to-base64 Endpoint. Executing a manipulation of the argument url can lead to server-side request forgery. It is possible to launch the attac...

7.5CVSS0.00278EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/02 3:0 p.m.5 views

CVE-2026-5346

A vulnerability was determined in huimeicloud hmeditor up to 2.2.3. Impacted is the function client.get of the file src/mcp-server.js of the component image-to-base64 Endpoint. Executing a manipulation of the argument url can lead to server-side request forgery. It is possible to launch the attac...

7.5CVSS6.7AI score0.00278EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/04/02 2:30 p.m.20 views

CVE-2026-5342 LibRaw TIFF/NEF decoders_libraw.cpp nikon_load_padded_packed_raw out-of-bounds

A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikonloadpaddedpackedraw of the file src/decoders/decoderslibraw.cpp of the component TIFF/NEF. Executing a manipulation of the argument loadflags/rawwidth can lead to out-of-bounds read. It is possible to launch the...

6.9CVSS0.00735EPSS
Exploits1References9
AlpineLinux
AlpineLinuxadded 2026/04/02 2:30 p.m.5 views

CVE-2026-5342

A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikonloadpaddedpackedraw of the file src/decoders/decoderslibraw.cpp of the component TIFF/NEF. Executing a manipulation of the argument loadflags/rawwidth can lead to out-of-bounds read. It is possible to launch the...

6.9CVSS5.1AI score0.00735EPSS
Exploits1References9
ATTACKERKB
ATTACKERKBadded 2026/04/02 2:30 p.m.3 views

CVE-2026-5342

A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikonloadpaddedpackedraw of the file src/decoders/decoderslibraw.cpp of the component TIFF/NEF. Executing a manipulation of the argument loadflags/rawwidth can lead to out-of-bounds read. It is possible to launch the...

6.9CVSS5.7AI score0.00735EPSS
Exploits1References8
NVD
NVDadded 2026/04/02 2:16 p.m.7 views

CVE-2026-5334

A weakness has been identified in itsourcecode Online Enrollment System 1.0. Impacted is an unknown function of the file /enrollment/index.php?view=edit&id=3 of the component Parameter Handler. This manipulation of the argument deptid causes sql injection. The attack is possible to be carried out...

9.8CVSS0.00371EPSS
Exploits1References5
Rows per page
Query Builder