Lucene search
K

244596 matches found

CVE
CVE
added 6 hours ago6 views

CVE-2026-15672

The CVE-2026-15672 affects itsourcecode Electronic Judging System 1.0. A vulnerability exists in /intrams/admin/add_judges.php where manipulating the fname argument leads to SQL injection. Attacker could exploit remotely; the exploit has been publicly disclosed. CVSS metrics vary by vector, but i...

6.5CVSS6.5AI score
Exploits0References6
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-43622

A vulnerability was determined in itsourcecode Electronic Judging System 1.0. Impacted is an unknown function of the file /intrams/admin/addjudges.php. This manipulation of the argument fname causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

6.5CVSS6.5AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
added 8 hours ago5 views

Malicious code in @flcik/flick.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d31c087b34f156cf2b5ae7070222a57e2d760d68f9c4c73721c2800eb7b6bf62 @flcik/[email protected] replicates the discord.js public API surface FlickClient, GatewayIntentBits, SlashCommandBuilder, ButtonStyle, MessageFlags, th...

6.1AI score
Exploits0References10
EUVD
EUVD
added 11 hours ago5 views

EUVD-2026-43555

CrewAI before 1.15.1 contains a server-side request forgery vulnerability in the validateurl function that performs one-shot DNS resolution and blocklist checks before returning the original URL unchanged. Attackers can bypass the security filter by supplying URLs that redirect to internal...

8.3CVSS6.1AI score
Exploits0References6
EUVD
EUVD
added 11 hours ago4 views

EUVD-2026-43548

9Router through version 0.4.41 contain an unauthenticated information disclosure vulnerability that allows remote attackers to access sensitive user data by sending requests to unprotected API endpoints. Attackers can enumerate paginated request logs and retrieve complete AI conversation historie...

8.7CVSS6.1AI score
Exploits0References3
EUVD
EUVD
added 11 hours ago4 views

EUVD-2026-43575

Cockpit CMS contains a missing authorization vulnerability in the Bucket file storage API /system/buckets/api. The api method in modules/System/Controller/Buckets.php executes bucket commands ls, upload, removefiles, rename, createfolder without performing any ACL or role check. Any authenticated...

8.8CVSS6.1AI score
Exploits0References5
EUVD
EUVD
added 11 hours ago4 views

EUVD-2026-43541

Glarysoft Glary Utilities Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Glarysoft Glary Utilities. An attacker must first obtain the ability to execute low-privileged code on the target system...

7.3CVSS7.2AI score
Exploits0References2
EUVD
EUVD
added 11 hours ago5 views

EUVD-2026-43550

A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0/2.php. This affects an unknown function of the file /editexam2.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been release...

7.5CVSS6.8AI score
Exploits0References7
EUVD
EUVD
added 11 hours ago5 views

EUVD-2026-43586

SAP NetWeaver Application Server ABAP allows an authenticated attacker to leverage logical errors in memory management to cause a memory corruption that could lead to unauthorized data access, modification, or system unavailability. This has high impact on confidentiality, integrity, and...

9.9CVSS6.1AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added yesterday12 views

The vulnerability of the software for calculating positions of individual RTLS transponders in the SIMATIC RTLS Locating Manager lies in the lack of a mechanism for verifying input data during backup scenarios. This allows a malicious actor to execute arbitrary code with SYSTEM privileges.

The vulnerability of the software for calculating positions of individual RTLS transponders in the SIMATIC RTLS Locating Manager is related to deficiencies in the mechanism for verifying input data during backup scenario execution. Exploiting this vulnerability could allow an attacker, operating...

9.1CVSS6.1AI score0.00648EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added yesterday14 views

The vulnerability of the Directum RX ECM system, related to deficiencies in access control, allows a perpetrator to compromise data integrity.

The vulnerability of the Directum RX ECM system is related to deficiencies in access control. Exploiting this vulnerability could allow a remote attacker to compromise data integrity...

5CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added yesterday15 views

The vulnerabilities in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel allow a hacker to cause a service failure.

The vulnerability in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel systems relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

7CVSS6.1AI score0.0013EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added yesterday18 views

The vulnerability of the Directum Web Agent component of the Directum RX system, which arises due to insufficient validation of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the Directum Web Agent component of the Directum RX system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially crafted file...

8.5CVSS6.1AI score
Exploits0Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added yesterday4 views

Malicious code in nodemon-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1d2f1b3c8848137e0ec6a9897d6f4056102623f1139549c9dd928fcb4482e69 The package was found to contain malicious code or consuming dependency that contains malicious code Source: ghsa-malware...

6.1AI score
Exploits0References2
CVE
CVE
added yesterday10 views

CVE-2026-15595

Technical details about CVE-2026-15595 are not publicly available in the provided documents. Monitor for updates.

5.3CVSS4.8AI score
Exploits0References6
Chainguard
Chainguard
added yesterday2 views

GHSA-V66C-278H-3VJ4 vulnerabilities

Vulnerabilities for packages: chromium...

6.1AI score
Exploits0
Chainguard
Chainguard
added yesterday5 views

CVE-2026-15109 vulnerabilities

Vulnerabilities for packages: chromium...

6.5CVSS6.1AI score0.00215EPSS
Exploits0
Chainguard
Chainguard
added yesterday5 views

GHSA-C8MV-CH2P-4GWV vulnerabilities

Vulnerabilities for packages: chromium...

6.1AI score
Exploits0
Chainguard
Chainguard
added yesterday5 views

CVE-2026-15132 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS6.1AI score0.0027EPSS
Exploits0
Chainguard
Chainguard
added yesterday6 views

CVE-2026-15129 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS6.1AI score0.00225EPSS
Exploits0
Rows per page
Query Builder