| CVE-2026-10189 |
high |
8.8 |
8.8 |
|
|
|
6d ago |
A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the function cgiSysTimeInfoSet of the file /bin/httpd. The manipulation of the argument sec leads to stack-based … |
| CVE-2026-10186 |
high |
7.3 |
7.3 |
|
|
|
6d ago |
A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /patient.php. Such manipulati… |
| CVE-2026-10185 |
high |
7.3 |
7.3 |
|
|
|
6d ago |
A weakness has been identified in SourceCodester Hospitals Patient Records Management System 1.0. Affected is an unknown function of the file /classes/Users.php?f=save. This manipulation of the argum… |
| CVE-2026-10184 |
high |
7.3 |
7.3 |
|
|
|
6d ago |
A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This impacts an unknown function of the file /classes/Users.php?f=delete. The manipulation of th… |
| CVE-2026-10181 |
high |
8.8 |
8.8 |
|
|
|
6d ago |
A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formSysCmd of the file /goform/formSysCmd. Performing a manipulation of the argument submit-url results … |
| CVE-2026-10183 |
high |
8.8 |
8.8 |
|
|
|
6d ago |
A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. This affects the function formWlanSetup of the file /goform/formWlanSetup. The manipulation of the argument enrollee leads to stack-base… |
| CVE-2026-10182 |
medium |
6.3 |
6.3 |
|
|
|
6d ago |
A vulnerability was determined in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formWlanSetup of the file /goform/formWlanSetup. Executing a manipulation of the argument enrollee … |
| CVE-2026-10180 |
medium |
6.3 |
6.3 |
|
|
|
6d ago |
A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. Impacted is the function formSysCmd of the file /goform/formSysCmd. Such manipulation of the argument sysCmd leads to command injection.… |
| CVE-2026-49490 |
high |
8.1 |
8.1 |
|
|
|
6d ago |
OpenCATS from version 0.9.1a contains an SQL injection vulnerability in DataGrid filter handling that allows authenticated attackers to inject SQL through crafted filters targeting the non-filterable… |
| CVE-2026-49489 |
high |
8.5 |
8.5 |
|
|
|
6d ago |
OpenCATS through 0.9.7.4 contains a sql injection vulnerability in the sortDirection parameter of the DataGrid component that allows authenticated users to extract database contents. Attackers can in… |
| CVE-2026-10179 |
high |
8.8 |
8.8 |
|
|
|
6d ago |
A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This issue affects the function formSetWlanEncrypt of the file /goform/formSetWlanEncrypt. This manipulation of the argument webpage causes stack… |
| CVE-2026-10178 |
high |
7.3 |
7.3 |
|
|
|
6d ago |
A vulnerability was detected in code-projects Online Music Site 1.0. This vulnerability affects unknown code of the file /Administrator/PHP/AdminEditAlbum.php. The manipulation of the argument ID res… |
| CVE-2026-10176 |
medium |
6.3 |
6.3 |
|
|
|
6d ago |
A weakness has been identified in Aider-AI Aider 0.86.3. Affected by this issue is some unknown functionality of the component Code Generation Workflow. Executing a manipulation can lead to sql injec… |
| CVE-2026-10177 |
medium |
6.3 |
6.3 |
|
|
|
6d ago |
A security vulnerability has been detected in Aider-AI Aider 0.86.3. This affects the function requests.get of the file api_docs.py of the component AWS EC2 Metadata Endpoint. The manipulation leads … |
| CVE-2026-10175 |
medium |
6.3 |
6.3 |
|
|
|
7d ago |
A security flaw has been discovered in Aider-AI Aider 0.86.3. Affected by this vulnerability is the function editor_coder.run of the file auth.py of the component Architect Mode. Performing a manipul… |
| CVE-2026-10174 |
medium |
6.3 |
6.3 |
|
|
|
7d ago |
A vulnerability was identified in Aider-AI Aider 0.86.3. Affected is an unknown function of the file aider/args.py of the component Pre-commit Hook Handler. Such manipulation of the argument git-comm… |
| CVE-2026-10173 |
medium |
4.3 |
4.3 |
|
|
|
7d ago |
A weakness has been identified in Orthanc Explorer 2 up to 1.12.0. The impacted element is an unknown function of the file WebApplication/src/components/StudyList.vue of the component URL Handler. Th… |
| CVE-2026-10172 |
medium |
6.3 |
6.3 |
|
|
|
7d ago |
A security flaw has been discovered in Bdtask Multi-Store Inventory Management System 1.0. The affected element is the function Upload of the file application/modules/dashboard/controllers/Module.php… |
| CVE-2026-10171 |
medium |
4.7 |
4.7 |
|
|
|
7d ago |
A vulnerability has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. Such manipulation of the argument ID leads to … |
| CVE-2026-10170 |
medium |
6.3 |
6.3 |
|
|
|
7d ago |
A flaw has been found in code-projects Visitor Management System 1.0. Affected by this issue is some unknown functionality of the file /vms/php/phone_0.php. This manipulation of the argument phone ca… |
| CVE-2026-10169 |
low |
3.7 |
3.7 |
|
|
|
7d ago |
A vulnerability was detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected by this vulnerability is the function ajax_forgot_pa… |
| CVE-2026-10168 |
medium |
6.3 |
6.3 |
|
|
|
7d ago |
A security vulnerability has been detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected is the function marks of the file appl… |
| CVE-2026-10167 |
high |
7.3 |
7.3 |
|
|
|
7d ago |
A weakness has been identified in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. This impacts the function sign_auth_cookie of the file appl… |
| CVE-2026-8382 |
medium |
5.3 |
5.3 |
|
|
|
7d ago |
The Advanced Custom Fields (ACF®) plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 6.8.1. This is due to the plugin not properly verifying that a user … |
| CVE-2026-10166 |
medium |
6.3 |
6.3 |
|
|
|
7d ago |
A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of t… |
| CVE-2026-10165 |
high |
8.8 |
8.8 |
|
|
|
7d ago |
A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manip… |
| CVE-2026-10164 |
high |
8.8 |
8.8 |
|
|
|
7d ago |
A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument Sh… |
| CVE-2026-10163 |
high |
8.8 |
8.8 |
|
|
|
7d ago |
A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of t… |
| CVE-2026-10162 |
high |
8.8 |
8.8 |
|
|
|
7d ago |
A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects the function formSetPassword of the file /goform/formSetPassword. Executing a manipulation of the argument webpage can… |
| CVE-2026-10161 |
high |
8.8 |
8.8 |
|
|
|
7d ago |
A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. This affects the function formResetStatistic of the file /goform/formResetStatistic. Performing a manipulation of the argument status_stat… |
| CVE-2026-10160 |
high |
8.8 |
8.8 |
|
|
|
7d ago |
A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Affected by this issue is the function formSetEnableWizard of the file /goform/formSetEnableWizard. Such manipulation of the… |
| CVE-2026-10159 |
high |
8.8 |
8.8 |
|
|
|
7d ago |
A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the function formSysLog of the file /goform/formSysLog. This manipulation of the argument current_page… |
| CVE-2026-10158 |
high |
8.8 |
8.8 |
|
|
|
7d ago |
A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is the function formPortFw of the file /goform/formPortFw. The manipulation of the argument server_name results in stack-b… |
| CVE-2026-10157 |
high |
7.3 |
7.3 |
|
|
|
7d ago |
A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file src/amf/ngap-handler.c of the component NGAP PathSwitchRequest Message Handler. The manipulation le… |
| CVE-2026-10156 |
medium |
4.3 |
4.3 |
|
|
|
7d ago |
A vulnerability was determined in Open5GS up to 2.7.7. This affects the function handle_amf_info in the library /lib/sbi/nnrf-handler.c of the component nf-instances Endpoint. Executing a manipulatio… |
| CVE-2026-10155 |
medium |
4.7 |
4.7 |
|
|
|
7d ago |
A vulnerability was found in Bdtask Multi-Store Inventory Management System 1.0. The impacted element is the function accounts_report_search of the file application/modules/accounts/controllers/Accou… |
| CVE-2026-10154 |
medium |
4.3 |
4.3 |
|
|
|
7d ago |
A vulnerability has been found in Dolibarr ERP CRM 23.0.0/23.0.1/23.0.2. The affected element is an unknown function of the file htdocs/user/messaging.php. Such manipulation of the argument ID leads … |
| CVE-2026-10153 |
medium |
4.3 |
4.3 |
|
|
|
7d ago |
A flaw has been found in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is the function Search of the file org/springframework/cache/support/AbstractCacheManager.java. Th… |
