Lucene search
K

41187 matches found

Vulnrichment
Vulnrichment
added 2026/03/31 10:0 a.m.3 views

CVE-2026-5197 code-projects Student Membership System delete_user.php sql injection

A vulnerability was found in code-projects Student Membership System 1.0. The affected element is an unknown function of the file /deleteuser.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
NVD
NVD
added 2026/03/31 9:16 a.m.2 views

CVE-2026-5196

A vulnerability has been found in code-projects Student Membership System 1.0. Impacted is an unknown function of the file /deletemember.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be...

6.5CVSS0.00192EPSS
Exploits0References5
OSV
OSV
added 2026/03/31 9:16 a.m.2 views

DEBIAN-CVE-2026-5201

A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for...

7.5CVSS8.1AI score0.01069EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/31 9:16 a.m.5 views

CVE-2026-5201

A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for...

7.5CVSS7.2AI score0.01069EPSS
Exploits1References3
OSV
OSV
added 2026/03/31 9:16 a.m.4 views

UBUNTU-CVE-2026-5201

A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for...

7.5CVSS6AI score0.01069EPSS
Exploits1References5
CVE
CVE
added 2026/03/31 9:0 a.m.11 views

CVE-2026-5196

The vulnerability CVE-2026-5196 affects code-projects Student Membership System 1.0. The issue resides in an unknown function of /delete_member.php where manipulating the ID parameter leads to SQL injection, exposing confidentiality and integrity with a low/medium impact per metrics. Exploitation...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/03/31 8:37 a.m.4 views

SUSE CVE-2026-5107

A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function processtype2route of the file bgpd/bgpevpn.c of the component EVPN Type-2 Route Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The attack is considered to ha...

4.2CVSS5.3AI score0.00279EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/03/31 8:32 a.m.3 views

CVE-2026-5201

A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for...

7.5CVSS8.1AI score0.01069EPSS
Exploits1
Cvelist
Cvelist
added 2026/03/31 8:32 a.m.39 views

CVE-2026-5201 Gdk-pixbuf: gdk-pixbuf: denial of service via heap-based buffer overflow when processing a specially crafted jpeg image

A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for...

7.5CVSS0.01069EPSS
Exploits1References25
Vulnrichment
Vulnrichment
added 2026/03/31 8:15 a.m.2 views

CVE-2026-5195 code-projects Student Membership System User Registration sql injection

A flaw has been found in code-projects Student Membership System 1.0. This issue affects some unknown processing of the component User Registration Handler. Executing a manipulation can lead to sql injection. The attack can be launched remotely...

7.5CVSS5.8AI score0.00259EPSS
Exploits0References5
NVD
NVD
added 2026/03/31 7:16 a.m.6 views

CVE-2026-5184

A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be use...

8.8CVSS0.05811EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/31 6:45 a.m.28 views

CVE-2026-5184 TRENDnet TEW-713RE setSysAdm command injection

A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be use...

6.5CVSS0.05811EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/31 6:45 a.m.4 views

CVE-2026-5184 TRENDnet TEW-713RE setSysAdm command injection

A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be use...

6.5CVSS6.4AI score0.05811EPSS
Exploits1References4
EUVD
EUVD
added 2026/03/31 6:31 a.m.5 views

EUVD-2026-17311

A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This affects an unknown part of the file /admin/login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit is now public and may be used...

7.5CVSS5.8AI score0.00259EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/31 6:31 a.m.5 views

EUVD-2026-17309

A security vulnerability has been detected in Totolink A3300R 17.0.0cu.557b20221024. Affected by this issue is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument vlanPriLan3 leads to command injection. Remote exploitation of the attack is possible. The...

6.5CVSS6.3AI score0.03664EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/31 6:31 a.m.2 views

EUVD-2026-17313

A flaw has been found in SourceCodester Simple Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=login2. This manipulation of the argument email causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS5.8AI score0.00325EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/31 6:31 a.m.4 views

EUVD-2026-17329

A vulnerability was found in SourceCodester Teacher Record System 1.0. Impacted is an unknown function of the file Teacher Record System of the component Parameter Handler. Performing a manipulation of the argument searchteacher results in sql injection. It is possible to initiate the attack...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/31 6:31 a.m.7 views

EUVD-2026-17327

A vulnerability has been found in SourceCodester Simple Doctors Appointment System up to 1.0. This issue affects some unknown processing of the file /doctorsappointment/admin/ajax.php?action=savecategory. Such manipulation of the argument img leads to unrestricted upload. The attack may be...

6.5CVSS6.1AI score0.00206EPSS
Exploits0References6
NVD
NVD
added 2026/03/31 6:16 a.m.3 views

CVE-2026-5182

A vulnerability was found in SourceCodester Teacher Record System 1.0. Impacted is an unknown function of the file Teacher Record System of the component Parameter Handler. Performing a manipulation of the argument searchteacher results in sql injection. It is possible to initiate the attack...

7.5CVSS0.00259EPSS
Exploits0References5
CVE
CVE
added 2026/03/31 5:45 a.m.17 views

CVE-2026-5183

CVE-2026-5183 affects TRENDNet TEW-713RE (up to firmware 1.02). The vulnerable element is the function sub_421494 in the file /goform/addRouting; manipulating the argument dest can cause a remote command injection. Public exploit information exists; vendor has not responded to disclosure. Connect...

9.8CVSS6.3AI score0.05126EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder