Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

RedhatCVE
RedhatCVEadded 3 days ago8 views

CVE-2026-11336

A vulnerability has been found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. Affected is an unknown function of the file dashboardpage/adminpage.php of the component Admin Interface. The manipulation of the argument...

6.5CVSS5.1AI score0.00043EPSS
Exploits0References1
NVD
NVDadded 2026/06/01 6:16 a.m.10 views

CVE-2026-10225

A vulnerability was detected in raisulislamg4 studentmanagementsystembyphp up to 310d950e09013d5133c6b9210aff9444382d16d1. This issue affects some unknown processing of the file logincheck.php of the component Login. Performing a manipulation of the argument Username results in sql injection. The...

7.5CVSS0.00044EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/05/05 12:0 a.m.1 views

CVE-2026-7788

A security flaw has been discovered in Axle-Bucamp MCP-Docusaurus up to 404bc028e15ec304c9a045528560f4b5f27a17e0. The affected element is the function updatedocument/continuedocument/deletedocument/getcontent of the file app/routes/document.py. Performing a manipulation of the argument DOCSDIR/pa...

7.5CVSS6.8AI score0.00066EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/28 6:30 a.m.22 views

CVE-2026-7235 ErlichLiu claude-agent-sdk-master route.ts path traversal

A security vulnerability has been detected in ErlichLiu claude-agent-sdk-master up to b185aa7ff0d864581257008077b4010fca1747bf. Affected by this vulnerability is an unknown functionality of the file app/api/agent-output/route.ts. The manipulation of the argument outputFile leads to path traversal...

6.9CVSS0.00062EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/04/28 12:0 a.m.3 views

PT-2026-35829

A vulnerability has been found in eiliyaabedini aider-mcp up to 667b914301aada695aab0e46d1fb3a7d5e32c8af. Affected is an unknown function of the file aider mcp.py of the component code with ai. The manipulation of the argument working dir/editable files leads to command injection. The attack may ...

7.5CVSS7AI score0.0212EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2026/04/27 7:23 p.m.3 views

CVE-2026-6981

A vulnerability was found in IhateCreatingUserNames2 AiraHub2 up to 3e4b77fd7d48ed811ffe5b8d222068c17c76495e. Affected is the function connectstreamendpoint/syncagents of the file AiraHub.py of the component Endpoint. Performing a manipulation results in server-side request forgery. The attack ma...

6.5CVSS6.1AI score0.00014EPSS
Exploits0References1
EUVD
EUVDadded 2026/04/25 2:15 p.m.3 views

EUVD-2026-25657

A vulnerability was found in IhateCreatingUserNames2 AiraHub2 up to 3e4b77fd7d48ed811ffe5b8d222068c17c76495e. Affected is the function connectstreamendpoint/syncagents of the file AiraHub.py of the component Endpoint. Performing a manipulation results in server-side request forgery. The attack ma...

6.5CVSS6.1AI score0.00014EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/03 3:30 p.m.2 views

CVE-2026-5470

A security vulnerability has been detected in mixelpixx Google-Research-MCP 1e062d7bd887bfe5f6e582b6cc288bb897b35cf2/ca613b736ab787bc926932f59cddc69457185a83. This issue affects the function extractContent of the file src/services/content-extractor.service.ts of the component Model Context Protoc...

6.5CVSS5.5AI score0.00043EPSS
Exploits0References4
EUVD
EUVDadded 2026/04/02 6:31 a.m.4 views

EUVD-2026-18126

A vulnerability has been found in AlejandroArciniegas mcp-data-vis bc597e391f184d2187062fd567599a3cb72adf51/de5a51525a69822290eaee569a1ab447b490746d. This affects the function Request of the file src/servers/database/server.js of the component MCP Handler. The manipulation leads to sql injection...

7.5CVSS6.7AI score0.0004EPSS
Exploits0References5
EUVD
EUVDadded 2026/03/12 9:31 a.m.3 views

EUVD-2026-11545

A vulnerability was determined in rxi fe up to ed4cda96bd582cbb08520964ba627efb40f3dd91. The impacted element is the function read of the file src/fe.c. This manipulation with the input 1 causes out-of-bounds read. The attack requires local access. The exploit has been publicly disclosed and may ...

4.8CVSS5.5AI score0.00018EPSS
Exploits0References7
OSV
OSVadded 2026/02/09 2:16 a.m.4 views

CVE-2026-2201

A security vulnerability has been detected in ZeroWdd studentmanager up to 2151560fc0a50ec00426785ec1e01a3763b380d9. This impacts the function addLeave of the file src/main/java/com/wdd/studentmanager/controller/LeaveController.java. The manipulation of the argument Reason for Leave leads to cros...

5.4CVSS4AI score0.00035EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/02/09 1:2 a.m.4 views

CVE-2026-2201

A security vulnerability has been detected in ZeroWdd studentmanager up to 2151560fc0a50ec00426785ec1e01a3763b380d9. This impacts the function addLeave of the file src/main/java/com/wdd/studentmanager/controller/LeaveController.java. The manipulation of the argument Reason for Leave leads to cros...

4.8CVSS3.8AI score0.00035EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2026/02/08 1:3 p.m.5 views

CVE-2026-2078

A vulnerability was detected in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addPermission/updatePermission/deletePermission of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\PermissionController.java of the component...

8.8CVSS6.2AI score0.00085EPSS
Exploits1References1
OSV
OSVadded 2026/02/07 8:15 a.m.2 views

CVE-2026-2078

A vulnerability was detected in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addPermission/updatePermission/deletePermission of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\PermissionController.java of the component...

8.8CVSS5.5AI score0.00085EPSS
Exploits1References6
Cvelist
Cvelistadded 2026/02/07 8:2 a.m.24 views

CVE-2026-2078 yeqifu warehouse Permission Management PermissionController.java deletePermission improper authorization

A vulnerability was detected in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addPermission/updatePermission/deletePermission of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\PermissionController.java of the component...

6.5CVSS0.00085EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2026/01/28 3:16 a.m.6 views

CVE-2026-1445

A vulnerability was found in iJason-Liu BooksManager up to 298ba736387ca37810466349af13a0fdf828e99c. This vulnerability affects unknown code of the file controllers/bookscenter/uploadbookCover.php. Performing a manipulation of the argument bookcover results in unrestricted upload. The attack may ...

5.8CVSS5.5AI score0.00064EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/27 12:0 a.m.4 views

PT-2025-53625

Name of the Vulnerable Software and Affected Versions jackq XCMS versions prior to 3fab5342cc509945a7ce1b8ec39d19f701b89261 Description A flaw exists in jackq XCMS that allows for unrestricted file upload. This issue impacts an unknown function within the file...

7.5CVSS6.4AI score0.00056EPSS
Exploits0References11
EUVD
EUVDadded 2025/12/19 5:32 p.m.3 views

EUVD-2025-204579

A security flaw has been discovered in floooh sokol up to 33e2271c431bf21de001e972f72da17a984da932. This vulnerability affects the function sgpipelinecommoninit in the library sokolgfx.h. Performing manipulation results in heap-based buffer overflow. The attack needs to be approached locally. The...

5.3CVSS5.3AI score0.00026EPSS
Exploits1References8
Vulnrichment
Vulnrichmentadded 2025/11/10 1:2 a.m.2 views

CVE-2025-12924 rymcu forest BankController.java GlobalResult authorization

A vulnerability was identified in rymcu forest up to de53ce79db9faa2efc4e79ce1077a302c42a1224. This issue affects the function GlobalResult of the file src/main/java/com/rymcu/forest/web/api/bank/BankController.java. The manipulation leads to missing authorization. The attack may be initiated...

5.3CVSS6.3AI score0.00043EPSS
Exploits1References5
NVD
NVDadded 2025/10/27 9:15 p.m.5 views

CVE-2025-12327

A vulnerability was determined in shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5. This issue affects some unknown processing of the file /description.php. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been public...

6.5CVSS0.00021EPSS
Exploits0References3
Rows per page
Query Builder