Lucene search
K

19026 matches found

EUVD
EUVD
added 2026/04/10 8:0 p.m.3 views

EUVD-2026-21492

Rembg has a Path Traversal via Custom Model Loading...

5.3CVSS5.8AI score0.00592EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2026/04/10 7:23 p.m.8 views

PraisonAI has Unrestricted Upload Size in WSGI Recipe Registry Server that Enables Memory Exhaustion DoS

Summary The WSGI-based recipe registry server server.py reads the entire HTTP request body into memory based on the client-supplied Content-Length header with no upper bound. Combined with authentication being disabled by default no token configured, any local process can send arbitrarily large...

7.5CVSS5.8AI score0.00334EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2026/04/10 7:23 p.m.6 views

EUVD-2026-21160

PraisonAI has Unrestricted Upload Size in WSGI Recipe Registry Server that Enables Memory Exhaustion DoS...

6.2CVSS5.8AI score0.00334EPSS
Exploits1References3
OSV
OSV
added 2026/04/10 7:23 p.m.1 views

GHSA-2XGV-5CV2-47VV PraisonAI has Unrestricted Upload Size in WSGI Recipe Registry Server that Enables Memory Exhaustion DoS

Summary The WSGI-based recipe registry server server.py reads the entire HTTP request body into memory based on the client-supplied Content-Length header with no upper bound. Combined with authentication being disabled by default no token configured, any local process can send arbitrarily large...

6.2CVSS5.8AI score0.00334EPSS
Exploits1References4
NVD
NVD
added 2026/04/10 6:16 p.m.5 views

CVE-2026-32892

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains an OS Command Injection vulnerability in the file move function. The move function in fileManage.lib.php passes user-controlled path values directly into exec shell commands without using...

9.1CVSS0.01527EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/10 4:16 p.m.3 views

CVE-2026-40086 Rembg has a Path Traversal via Custom Model Loading

Rembg is a tool to remove images background. Prior to 2.0.75, a path traversal vulnerability in the rembg HTTP server allows unauthenticated remote attackers to read arbitrary files from the server's filesystem. By sending a crafted request with a malicious modelpath parameter, an attacker can...

5.3CVSS5.9AI score0.00592EPSS
Exploits1References3
EUVD
EUVD
added 2026/04/10 12:31 p.m.3 views

EUVD-2021-34777

A files or directories accessible to external parties vulnerability in Synology SSL VPN Client before 1.4.5-0684 allows remote attackers to access files within the installation directory via a local HTTP server bound to the loopback interface. By leveraging user interaction with a crafted web pag...

6.5CVSS5.8AI score0.00188EPSS
Exploits0References2
NVD
NVD
added 2026/04/10 6:16 a.m.3 views

CVE-2026-6024

A vulnerability was determined in Tenda i6 1.0.0.72204. Affected by this issue is the function R7WebsSecurityHandlerfunction of the component HTTP Handler. This manipulation causes path traversal. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be...

9.8CVSS0.00691EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/10 6:15 a.m.4 views

CVE-2026-6028

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313b20191024. Impacted is the function setPptpServerCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument enable leads to os command injection. The attack may be initiated remotely...

10CVSS7AI score0.02981EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/04/10 12:45 a.m.4 views

EUVD-2026-21272

A weakness has been identified in Totolink A7100RU 7.4cu.2313b20191024. Impacted is the function setMiniuiHomeInfoShow of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument laninfo can lead to os command injection. The attack may be performed from...

10CVSS6.9AI score0.01823EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.7 views

PT-2026-31852

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A security issue exists in the Totolink A7100RU router. The setAdvancedInfoShow function within the CGI Handler component, specifically in the file /cgi-bin/cstecgi.cgi, is susceptible ...

10CVSS7AI score0.01823EPSS
Exploits0References12
CNNVD
CNNVD
added 2026/04/10 12:0 a.m.5 views

Synology SSL VPN Client 安全漏洞

The Synology SSL VPN Client is a VPN client software developed by Synology, a Chinese company, used for secure connection to Synology NAS devices. Versions of the Synology SSL VPN Client prior to 1.4.5-0684 contained security vulnerabilities. These vulnerabilities stemmed from externally accessib...

6.5CVSS5.8AI score0.00188EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/09 9:19 p.m.2 views

CVE-2026-40115

PraisonAI is a multi-agent teams system. Prior to 4.5.128, the WSGI-based recipe registry server server.py reads the entire HTTP request body into memory based on the client-supplied Content-Length header with no upper bound. Combined with authentication being disabled by default no token...

6.2CVSS6AI score0.00334EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/04/09 9:19 p.m.19 views

CVE-2026-40115 PraisonAI has an Unrestricted Upload Size in WSGI Recipe Registry Server Enables Memory Exhaustion DoS

PraisonAI is a multi-agent teams system. Prior to 4.5.128, the WSGI-based recipe registry server server.py reads the entire HTTP request body into memory based on the client-supplied Content-Length header with no upper bound. Combined with authentication being disabled by default no token...

6.2CVSS0.00334EPSS
Exploits1References1
CVE
CVE
added 2026/04/09 9:19 p.m.15 views

CVE-2026-40115

The provided sources confirm a concrete vulnerability in PraisonAI’s WSGI recipe registry server prior to version 4.5.128: the server reads the full HTTP request body into memory based on the client’s Content-Length, with no upper bound, while the Starlette server enforces a 10 MB limit. Combined...

7.5CVSS6AI score0.00334EPSS
Exploits1References1Affected Software1
RedHat Linux
RedHat Linux
added 2026/04/09 7:0 p.m.9 views

nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files

A flaw was found in NGINX's ngxhttpmp4module. This Out-of-Bounds Read/Write vulnerability occurs due to improper handling of specially crafted MP4 files. A local authenticated attacker, by supplying a malicious MP4 file, can trigger a buffer over-read or overwrite in worker memory. This can lead ...

8.5CVSS7.5AI score0.00918EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/09 7:0 p.m.9 views

NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module

A flaw was found in NGINX. A remote attacker can exploit a buffer overflow vulnerability within the ngxhttpdavmodule module. This occurs when the NGINX configuration uses DAV module MOVE or COPY methods in conjunction with prefix location and alias directives. Successful exploitation may lead to...

8.8CVSS6AI score0.21621EPSS
Exploits0References5
NVD
NVD
added 2026/04/09 5:16 p.m.5 views

CVE-2026-5962

A vulnerability was detected in Tenda CH22 1.0.0.6468. This issue affects the function R7WebsSecurityHandlerfunction of the component httpd. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used...

9.8CVSS0.00537EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/09 4:30 p.m.3 views

CVE-2026-5962

A vulnerability was detected in Tenda CH22 1.0.0.6468. This issue affects the function R7WebsSecurityHandlerfunction of the component httpd. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used...

7.5CVSS6.8AI score0.00537EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2026/04/09 3:35 p.m.6 views

EUVD-2026-20917

A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the Content-Length header. The server allocates memory directly based on the attacker supplied header value without enforcing an upper limit. A crafted HTTP request containing an extremely large Content-Length val...

5.9AI score0.00566EPSS
Exploits0References4
Rows per page
Query Builder