Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

121118 matches found

Positive Technologies
Positive Technologiesadded 2026/06/01 12:0 a.m.13 views

PT-2026-45426

A vulnerability was determined in lharries whatsapp-mcp 0.0.1. Affected by this vulnerability is the function SendMessageRequest of the file whatsapp-bridge/main.go of the component Send API Endpoint. This manipulation of the argument mediaPath causes path traversal. The exploit has been publicly...

5.1CVSS5.3AI score0.00265EPSS
Exploits0References9
Cvelist
Cvelistadded 2026/06/01 12:0 a.m.28 views

CVE-2026-37234

FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xappids by sending multiple E42SETUPREQUESTs. On disconnect, only the first registered xappid's resources are cleaned up; subsequent xappids and their subscriptions remain as stale entries. A remote attacker can exploit this to leak...

0.00301EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/06/01 12:0 a.m.8 views

CVE-2026-37220

FlexRIC v2.0.0 crashes when an SCTP association is closed before an E2SETUPREQUEST is sent. The near-RT RIC assumes a mapping between SCTP association and E2 node always exists in the cleanup path and enforces this via assert. A remote unauthenticated attacker can crash the near-RT RIC port 36421...

5.8AI score0.00347EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/06/01 12:0 a.m.11 views

PT-2026-45617

Pixa Bank 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to extract sensitive data by injecting SQL code into the 'rib' parameter. Attackers can send POST requests to the agence-ajax.php endpoint with UNION-based SQL payloads to retrieve user information includi...

8.8CVSS5.9AI score0.00344EPSS
Exploits0References4
Snyk
Snykadded 2026/05/31 9:0 p.m.6 views

Malicious Package

Overview @cloudplatform-single-spa/mlspace-access-request is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that...

9.8CVSS5.9AI score
Exploits0References2
NVD
NVDadded 2026/05/31 4:16 a.m.13 views

CVE-2026-10166

A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack is possible to be carried out remotely...

6.5CVSS0.01072EPSS
Exploits0References4
NVD
NVDadded 2026/05/31 4:16 a.m.9 views

CVE-2026-10163

A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of the argument UserName/Password leads to buffer overflow. Remote exploitation of the attack is...

9CVSS0.00463EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/31 3:15 a.m.11 views

EUVD-2026-33486

A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack is possible to be carried out remotely...

6.5CVSS6.4AI score0.01072EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/31 3:15 a.m.28 views

CVE-2026-10166 Edimax BR-6478AC POST Request formWlbasic command injection

A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack is possible to be carried out remotely...

6.5CVSS0.01072EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/31 3:15 a.m.10 views

CVE-2026-10166

A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack is possible to be carried out remotely...

6.5CVSS6.4AI score0.01072EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/05/31 3:15 a.m.12 views

CVE-2026-10166

Edimax BR-6478AC (firmware 1.23) is affected by a vulnerability in the POST Request Handler, specifically the function formWlbasic in /goform/formWlbasic. The issue arises from manipulating the argument rootAPmac, enabling command injection. The vulnerability is exploitable remotely and has been ...

6.5CVSS6.4AI score0.01072EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/31 3:0 a.m.27 views

CVE-2026-10165 Edimax BR-6478AC POST Request formWanTcpipSetup stack-based overflow

A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manipulation of the argument pppUserName leads to stack-based buffer overflow. The attack may be...

9CVSS0.00738EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/05/31 3:0 a.m.7 views

CVE-2026-10165 Edimax BR-6478AC POST Request formWanTcpipSetup stack-based overflow

A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manipulation of the argument pppUserName leads to stack-based buffer overflow. The attack may be...

9CVSS7.9AI score0.00738EPSS
Exploits0References4
CVE
CVEadded 2026/05/31 3:0 a.m.20 views

CVE-2026-10165

The CVE-2026-10165 vulnerability affects Edimax BR-6478AC (firmware 1.23) in the POST Request Handler, specifically the formWanTcpipSetup function. Manipulation of the pppUserName argument causes a stack-based buffer overflow, with remote exploitation possible and a publicly available exploit. No...

9CVSS7.9AI score0.00738EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/31 2:30 a.m.28 views

CVE-2026-10164 Edimax BR-6478AC POST Request formUSBFolder buffer overflow

A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ShareName/SelectName results in buffer overflow. The attack can be executed remotely. The exploit ha...

9CVSS0.00463EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/31 2:30 a.m.8 views

CVE-2026-10164

A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ShareName/SelectName results in buffer overflow. The attack can be executed remotely. The exploit ha...

9CVSS7.7AI score0.00463EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/31 2:15 a.m.7 views

CVE-2026-10163 Edimax BR-6478AC POST Request formUSBAccount buffer overflow

A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of the argument UserName/Password leads to buffer overflow. Remote exploitation of the attack is...

9CVSS7.5AI score0.00463EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/31 2:15 a.m.29 views

CVE-2026-10163 Edimax BR-6478AC POST Request formUSBAccount buffer overflow

A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of the argument UserName/Password leads to buffer overflow. Remote exploitation of the attack is...

9CVSS0.00463EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/31 2:15 a.m.12 views

EUVD-2026-33482

A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of the argument UserName/Password leads to buffer overflow. Remote exploitation of the attack is...

9CVSS7.5AI score0.00463EPSS
Exploits0References4
CVE
CVEadded 2026/05/31 12:30 a.m.14 views

CVE-2026-10157

Open5GS up to 2.7.6 is affected by a vulnerability in the NGAP PathSwitchRequest Message Handler (src/amf/ngap-handler.c). The issue arises from a manipulation that leads to improper authentication. The attack can be initiated remotely, and a public exploit exists. A patch is available with ident...

7.5CVSS6.7AI score0.00419EPSS
Exploits0References8
Rows per page
Query Builder