366532 matches found
CVE-2026-9506
The CVE-2026-9506 issue affects Bagisto in the ImageCacheController where improper validation of user-supplied input enables path traversal via the filename parameter. This unauthenticated remote attacker could read arbitrary sensitive files outside the intended directory, as stated in the connec...
CVE-2026-11501
The CVE-2026-11501 entry concerns SourceCodester Hospitals Patient Records Management System 1.0. The flaw is a SQL injection in the handling of the ID parameter in /classes/Master.php?f=save_patient, enabling remote exploitation. The vulnerability stems from improper input handling in a server-s...
CVE-2026-11500
The CVE affects Weaviate up to version 1.37.7, specifically the Static API Key Handler’s validateConfig function in usecases/auth/authentication/apikey/client.go. The issue arises from manipulation of the StaticApiKey argument, enabling remote authorization bypass. The vulnerability has a publicl...
CVE-2026-3238
CVE-2026-3238 affects Samba’s WINS server in AD DCs, where unauthenticated UDP packets can trigger a NULL pointer dereference and crash the WINS service. Public details confirm the issue is a denial of service vector; no exploit details are provided in the documents. Remediation publicly document...
CVE-2026-41724
CVE-2026-41724 affects VMware Cloud Foundation Operations and is a stored cross-site scripting vulnerability. The NVD/NVD-derived data shows CVSSv3.1 base score 8.0 (Network, High impact on confidentiality, integrity, availability; Privileges Required: Low; User Interaction: Required). Exploitati...
CVE-2026-41723
VMware Cloud Foundation Operations is affected by CVE-2026-41723 (and related CVEs) with multiple stored cross-site scripting vulnerabilities. The NVD/NVD-derived details indicate an issue in VMware Cloud Foundation Operations where a malicious actor with privileges to create policies, views, or ...
CVE-2026-41722
CVE-2026-41722 is a stored cross-site scripting vulnerability affecting VMware Cloud Foundation Operations and related products. The NVD/Broadcom advisory describes that a malicious actor with privileges to create policies, views, or text-widgets can inject scripts to perform administrative actio...
CVE-2026-11499
CVE-2026-11499 affects Tenda HG7HG9/HG10 with version 300001138_en_xpon. The vulnerability is in the function formDOMAINBLK of the file /boaform/formDOMAINBLK. A crafted manipulation of the blkDomain argument leads to a stack-based buffer overflow. The advisory notes this can be exploited remotel...
CVE-2026-11498
CVE-2026-11498 affects Tenda HG7HG9/HG10 devices (Web Management Interface) due to a stack-based buffer overflow in function asp_voip_OtherSet within the /boaform/voip_other_set module. The issue is triggered by manipulating the funckey_transfer parameter and can be exploited remotely over the ne...
CVE-2026-11497
CVE-2026-11497 affects the D-Link DCS-5615 (firmware 1.01.00). The vulnerability targets an unknown functionality in the Boa Webserver component, specifically the file /etc/conf.d/boa/boa.conf, and can lead to a least privilege violation . The attack is described as remote and the exploit has bee...
CVE-2026-11495
The CVE affects CodeAstro Ingredients Stock Management System 1.0. Vulnerable component: /Ingredients-Stock/add_stock.php. Root cause: manipulation of the argument ID enables an SQL injection. Impact: data confidentiality/integrity/availability may be affected; attack vector is network with low c...
CVE-2026-11494
CVE-2026-11494 affects TOTOLINK AC1200 T8 firmware 4.1.5cu.8611, specifically an issue in the /etc/vsftpd.conf configuration of the vsftpd component. The described vulnerability arises from manipulation of the vsftpd.conf-related function, resulting in a least privilege violation. The advisory in...
CVE-2026-11493
CVE-2026-11493 affects Tenda AC15 firmware 15.03.05.19. The vulnerable element is an unknown function within the Samba component’s file /etc_ro/smb.conf. The description states that manipulating this element can cause weak password requirements, with the attack confined to the local network and a...
CVE-2026-11492
CVE-2026-11492 affects D-Link DIR-823G (firmware 1.0.2B05). The vulnerable component is vsftpd, specifically via the file /etc/vsftpd.conf. A manipulation of this file leads to a least-privilege violation, with remote exploit capability. Public exploitation has been released. No additional remedi...
CVE-2026-11491
CodeAstro Human Resource Management System 1.0 is affected in the Notice Board Management component, file /notice/All_notice. The vulnerability is a cross-site scripting flaw triggered by manipulating the Notice Title with an input like in a POST. This allows remote exploitation with a publicly ...
CVE-2026-11490
CVE-2026-11490 affects code-projects Online Music Site 1.0. A vulnerability in processing the Category argument in /Frontend/Search.php enables SQL injection. Exploitation can be performed remotely, and public disclosure of the exploit is noted in the sources. Connected documents (Attackerkb and ...
CVE-2026-11489
The CVE-2026-11489 entry concerns code-projects Online Music Site 1.0. A vulnerability exists in the file /Administrator/PHP/AdminDeleteAlbum.php where manipulating the argument ID enables SQL injection. The issue is exploitable remotely, and the exploit has already been made public, enabling pra...
CVE-2026-11488
The CVE-2026-11488 entry concerns code-projects Simple Flight Ticket Booking System 1.0. It identifies a SQL injection in the POST Parameter Handler, specifically in checkUser.php via the Username argument. Impact is limited to confidentiality and integrity with a low severity in CVSS metrics, an...
CVE-2026-11487
CVE-2026-11487 affects Neovim up to 0.12.2. The vulnerability resides in the M.read function of runtime/lua/vim/secure.lua (View Branch). Manipulation of the argument path can lead to local command injection. An exploit has been published and may be used locally. A patch identified by f83e0dcaf8c...
CVE-2026-11486
The CVE-2026-11486 affects SourceCodester Class and Exam Timetabling System 1.0. The vulnerability is in /archive1.php where manipulation of the argument sy leads to SQL injection. It enables remote exploitation, with the exploit publicly available. Documents do not specify affected versions beyo...
CVE-2026-11485
The CVE-2026-11485 affects SourceCodester Class and Exam Timetabling System 1.0. A vulnerability in an unknown function of /archive2.php allows manipulation of the argument sy to trigger SQL injection. The attack can be launched remotely, and the exploit has been disclosed publicly. These details...
CVE-2026-11484
SourceCodester Class and Exam Timetabling System 1.0 is affected by a SQL injection via the archive3.php file (argument sy). The vulnerability is exploitable remotely and reportedly has publicly available exploit code. The records do not specify the exact vulnerable function name beyond archive3....
CVE-2026-11483
The CVE-2026-11483 entry concerns SourceCodester Class and Exam Timetabling System 1.0. A SQL injection vulnerability exists in an unknown function of the file /archive4.php, triggered by manipulating the argument sy. Exploitation is possible remotely, and the exploit has been publicly released. ...
CVE-2026-11482
The CVE-2026-11482 entry describes a SQL injection in SourceCodester Class and Exam Timetabling System 1.0, caused by manipulating the argument sy in the unknown function of /archive5.php. The vulnerability is exploitable remotely, with a publicly available exploit. Affected software/component: S...
CVE-2026-11481
CVE-2026-11481 affects yoanbernabeu grepai up to 0.35.0. The vulnerability is in Postgres Embedding Cache: function PostgresStore.LookupByContentHash in file indexer/chunker.go. Manipulating the content_hash argument can lead to the use of a weak hash. Local access is required, with high attack c...
CVE-2026-11480
BeikeShop (Chengdu Everbrite Network Technology) Admin Design Builder Endpoint up to 1.6.0.22 is affected. The vulnerability resides in beike/Admin/Routes/admin.php where manipulating the argument settings.value triggers an SQL injection. The issue can be exploited remotely, and public exploit in...
CVE-2026-11479
CVE-2026-11479 affects yoanbernabeu grepai 0.35.0, specifically the Qdrant Backend component’s file indexer/chunker.go. The issue involves manipulation that leads to use of a weak hash, enabling a remote attack. Exploitation is described as difficult, with network attack vector and low privileges...
CVE-2026-11478
CVE-2026-11478 affects kokke tiny-regex-c, specifically the Pattern Handler’s file re.c and its function matchstar. The issue is a manipulation that causes inefficient regular-expression complexity (a redos-like problem). The attack is local, and an exploit has been published and may be used. Ver...
CVE-2024-58349
WordPress Theme Travelscape 1.0.3 is vulnerable to an arbitrary file upload due to insufficient validation in the theme’s upload functionality. This allows unauthenticated attackers to upload arbitrary files to the theme directory and execute them, enabling remote code execution on affected WordP...
CVE-2024-58348
Summary: CVE-2024-58348 affects the WordPress Background Image Cropper plugin, version 1.2. An unauthenticated attacker can reach the ups.php endpoint and upload arbitrary files (including PHP scripts), enabling remote code execution on the server. This is a network-accessible issue with low atta...
CVE-2023-54351
CVE-2023-54351 : WordPress Sonaar Music Plugin 4.7 has a stored XSS vulnerability in the comment functionality. Unauthenticated attackers can submit JavaScript payloads via the comment parameter to wp-comments-post.php, which are stored and later executed in the browsers of users viewing the affe...
CVE-2023-54352
The CVE-2023-54352 entry concerns WordPress Seotheme, where unauthenticated attackers can trigger remote code execution by uploading malicious files to the theme directory. The attack enables access to a PHP shell at /wp-content/themes/seotheme/mar.php to run system commands and upload additional...
CVE-2023-54350
Affected software: WordPress Augmented-Reality plugin. Vulnerability: remote code execution via the elFinder connector. Access/Impact: unauthenticated attackers can upload and execute arbitrary PHP files on the server. How it exploits: POST to connector.minimal.php with mkfile and put commands to...
CVE-2022-50953
The CVE concerns the WordPress plugin admin-word-count-column version 2.2 . A vulnerability allows unauthenticated local file read via crafted requests to download-csv.php, exploiting a null byte injection in the path parameter to bypass restrictions and read arbitrary files (e.g., system configu...
CVE-2021-47984
The CVE-2021-47984 entry concerns the WordPress Plugin WP24 Domain Check 1.6.2, which has a stored XSS vulnerability in the fieldnameDomain parameter. Input submitted to the plugin settings form (options.php) can inject JavaScript that executes in the browsers of administrators viewing the settin...
CVE-2021-47983
The CVE-2021-47983 issue affects WordPress plugin Stripe Payments 2.0.39, which contains a stored cross-site scripting vulnerability in the AcceptStripePayments-settings[currency_code] parameter. An authenticated attacker can submit POST requests to /wp-admin/options.php with script payloads in c...
CVE-2021-47982
Summary: CVE-2021-47982 affects WordPress plugin WP-Paginate 2.1.3 with a stored XSS via the preset parameter. Authenticated attackers can submit payloads in the preset field through the plugin settings page; payloads are stored and later executed when administrators view the settings. The record...
CVE-2026-11477
The CVE-2026-11477 affects hs-web hsweb-framework up to 5.0.1, specifically the OAuth2Client in hsweb-authorization/hsweb-authorization-oauth2/src/main/java/org/hswebframework/web/oauth2/server/OAuth2Client.java. The issue enables an open redirect due to manipulation of this component, with remot...
CVE-2026-11476
Technical details (affected product/version, root cause, exploit specifics) are not publicly provided in the supplied documents. Monitor for updates to obtain concrete information on CVE-2026-11476.
CVE-2026-11475
The CVE-2026-11475 affects Kushan2k student-management-system. Affects the function getStatus in controllers/GradeController.php of the Certificate Verification Endpoint. The underlying issue is that manipulating the nic argument can cause an SQL injection, enabling remote exploitation. Public ex...
CVE-2026-11474
CVE-2026-11474 affects Kushan2k student-management-system (Registration Endpoint: RegisterService.php). The vulnerability arises from manipulating the stimg argument, enabling unrestricted file upload. Reported as remotely exploitable with public exploit, implying potential remote attacker impact...
CVE-2026-11473
The CVE concerns jflyfox jfinal_cms (versions up to 5.1.0). The vulnerability is in AdvicefeedbackController.java list functionality, where improper handling of the orderBy argument enables SQL injection. This can be exploited remotely. The issue was reported early via an issue and no public resp...
CVE-2026-11472
The CVE-2026-11472 affects SourceCodester Class and Exam Timetabling System 1.0. The vulnerability is an SQL injection in the /index1.php file triggered by manipulating the Password parameter. It is remotely exploitable and the exploit has been publicly disclosed (PoC activity indicated). No spec...
CVE-2026-11471
Affected product: SourceCodester Class and Exam Timetabling System 1.0. Vulnerability: SQL injection via manipulation of the Password argument in an unknown function in /index2.php. Impact/scope: Remote exploit possible; exploit has been public. CVSS details in sources indicate network access wit...
CVE-2026-11470
The CVE-2026-11470 issue affects the hs-web hsweb-framework up to version 5.0.1, specifically in the File Upload component FileUploadProperties.java. The vulnerability arises from manipulation of the filename argument, enabling path traversal. Attacks can be initiated remotely and exploit details...
CVE-2026-36789
CVE-2026-36789 concerns Shenzhen Tenda Technology’s AC1206 (v15.03.06.23). The advisory reports multiple stack overflows in the fromGstDhcpSetSer function triggered via username/password parameters, enabling a Denial of Service through a crafted HTTP request. A CVSS v3.1 base score of 7.5 (HIGH) ...
CVE-2026-36786
CVE-2026-36786 affects Shenzhen Tenda Technology Co., Ltd Tenda FH451 V1.0.0.9. The issue is a stack overflow in the list1 parameter of the fromDhcpListClient function, enabling a Denial of Service via a crafted HTTP request. Affected component is the fromDhcpListClient path handling DHCP list da...
CVE-2026-11469
CVE-2026-11469 affects jishenghua jshERP up to version 3.6. The vulnerability is in the function insertPlatformConfig of PlatformConfigService.java (PlatformConfig Add Endpoint). A manipulation of the argument platformValue can cause server-side request forgery (SSRF). The attack can be performed...
CVE-2026-11468
SourceCodester Hospitals Patient Records Management System 1.0 is affected by CVE-2026-11468. The issue arises from unknown processing of the file path /admin/?page=room_types, where manipulating the argument room triggers a cross-site scripting (XSS) vulnerability. Exploitation is possible remot...
CVE-2026-11467
CVE-2026-11467 affects jishenghua jshERP up to 3.6. The vulnerability is in the function addAccountHeadAndDetail of AccountHeadService.java (path: jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java). The root cause is manipulation of the argument fileName, enabling path travers...