GHSA-QP24-9C29-MR6G vulnerabilities

Vulnerabilities for packages: chromium...

GHSA-J7C2-PHRM-27R8 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-9972 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-9988 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-9987 vulnerabilities

Vulnerabilities for packages: chromium...

GHSA-XF9G-PXHX-JG8C vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-36387

A Remote Code Execution vulnerability was found in CODEASTRO Membership Management System v1.0 in /addmembers.php. This vulnerability affects the file upload functionality, where improper file sanitization allows attackers to inject malicious files which leads RCE...

CVE-2026-36388

A Cross-Site Scripting XSS vulnerability was found in PHPGurukal Hospital Management System v4.0 in the /hospital/hms/edit-profile.php page. This flaw allows an authenticated attacker patient to inject a malicious script payload into the User Name parameter, which is stored in the application and...

CVE-2026-9931 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-9892 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-10019 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-10014 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-10012 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-10007 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-36356

The GoAhead web server on MeiG Smart FORGESLT711 devices firmware MDM9607.LE.1.0-00110-STD.PROD-1 allows unauthenticated OS command injection via the /action/SetRemoteAccessCfg endpoint...

CVE-2026-36618

Mercusys AC12G EU V1 with firmware AC12GEUV1200909 responds to version.bind CHAOS TXT queries, disclosing the DNS resolver software version unbound 1.22.0, aiding targeted attacks against known vulnerabilities...

CVE-2026-9471

A vulnerability was detected in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This impacts an unknown function of the file /student.php. Performing a manipulation of the argument FIRSTNAME results in cross site scripting. The attack can be initiated remotely...

CVE-2026-9486

A security flaw has been discovered in SourceCodester Student Grades Management System 1.0. This affects an unknown part. The manipulation results in cross-site request forgery. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks...

CVE-2026-9566

A vulnerability was identified in teableio teable up to 1.9.x. This impacts an unknown function of the file apps/nextjs-app/src/features/auth/pages/LoginPage.tsx of the component Sign-up. The manipulation of the argument redirect leads to cross site scripting. The attack is possible to be carried...

CVE-2026-9483

A vulnerability was found in SourceCodester Student Grades Management System 1.0. Affected is an unknown function of the file grades.php. Performing a manipulation of the argument studentid results in improper authorization. The attack may be initiated remotely. The exploit has been made public a...