VIR Vulnerability Intelligence Relay

Search

Found 901 results in 68ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-10214 high 7.3 7.3 4d ago A weakness has been identified in zhayujie chatgpt-on-wechat up to 2.0.8. This issue affects the function _get_safety_warning of the file agent/tools/bash/bash.py of the component Bash Tool. Executin…
CVE-2026-10208 high 7.3 7.3 4d ago A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the function login_user of the file login_1.php. Executing a manipulation of the argument Username can lea…
CVE-2026-10206 high 8.8 8.8 4d ago A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of the file /dbsrv.asp. Performing a manipulation of the argument str results in stack-based buffer o…
CVE-2026-37234 high 8.2 8.2 4d ago FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xapp_ids by sending multiple E42_SETUP_REQUESTs. On disconnect, only the first registered xapp_id's resources are cleaned up; subsequen…
CVE-2025-70099 high 7.5 7.5 4d ago A NULL pointer dereference in the ext4_dir_en_get_name_len function in include/ext4_dir.h of lwext4 1.0.0 allows attackers to cause a denial of service by supplying a specially crafted EXT4 filesyste…
CVE-2026-8796 high 8.1 8.1 FIX debian debian 4d ago Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input. In Perl/Decoder/srl_decoder.c, srl_read_object() and srl_read_hash() process a COPY tag, a back-refere…
CVE-2026-10191 high 8.8 8.8 4d ago A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function cgiWifiMacFilterSet of the file /bin/httpd. This manipulation of the argument wifiMacFilterSet.macList.mac causes s…
CVE-2026-10192 high 8.8 8.8 4d ago A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function set_local_time_0 of the file /bin/httpd. Such manipulation of the argument Time leads to stack-based bu…
CVE-2026-10188 high 8.8 8.8 4d ago A flaw has been found in Tenda W12 3.0.0.7(4763). This affects the function cgistaKickOff of the file /bin/httpd. Executing a manipulation of the argument staMac can lead to stack-based buffer overfl…
CVE-2026-10189 high 8.8 8.8 4d ago A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the function cgiSysTimeInfoSet of the file /bin/httpd. The manipulation of the argument sec leads to stack-based …
CVE-2026-10186 high 7.3 7.3 4d ago A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /patient.php. Such manipulati…
CVE-2026-10185 high 7.3 7.3 4d ago A weakness has been identified in SourceCodester Hospitals Patient Records Management System 1.0. Affected is an unknown function of the file /classes/Users.php?f=save. This manipulation of the argum…
CVE-2026-10184 high 7.3 7.3 4d ago A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This impacts an unknown function of the file /classes/Users.php?f=delete. The manipulation of th…
CVE-2026-10181 high 8.8 8.8 4d ago A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formSysCmd of the file /goform/formSysCmd. Performing a manipulation of the argument submit-url results …
CVE-2026-10183 high 8.8 8.8 4d ago A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. This affects the function formWlanSetup of the file /goform/formWlanSetup. The manipulation of the argument enrollee leads to stack-base…
CVE-2026-49490 high 8.1 8.1 4d ago OpenCATS from version 0.9.1a contains an SQL injection vulnerability in DataGrid filter handling that allows authenticated attackers to inject SQL through crafted filters targeting the non-filterable…
CVE-2026-49489 high 8.5 8.5 4d ago OpenCATS through 0.9.7.4 contains a sql injection vulnerability in the sortDirection parameter of the DataGrid component that allows authenticated users to extract database contents. Attackers can in…
CVE-2026-10179 high 8.8 8.8 4d ago A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This issue affects the function formSetWlanEncrypt of the file /goform/formSetWlanEncrypt. This manipulation of the argument webpage causes stack…
CVE-2026-10178 high 7.3 7.3 4d ago A vulnerability was detected in code-projects Online Music Site 1.0. This vulnerability affects unknown code of the file /Administrator/PHP/AdminEditAlbum.php. The manipulation of the argument ID res…
CVE-2026-10167 high 7.3 7.3 5d ago A weakness has been identified in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. This impacts the function sign_auth_cookie of the file appl…
CVE-2026-10165 high 8.8 8.8 5d ago A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manip…
CVE-2026-10164 high 8.8 8.8 5d ago A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument Sh…
CVE-2026-10163 high 8.8 8.8 5d ago A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of t…
CVE-2026-10162 high 8.8 8.8 5d ago A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects the function formSetPassword of the file /goform/formSetPassword. Executing a manipulation of the argument webpage can…
CVE-2026-10161 high 8.8 8.8 5d ago A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. This affects the function formResetStatistic of the file /goform/formResetStatistic. Performing a manipulation of the argument status_stat…
CVE-2026-10160 high 8.8 8.8 5d ago A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Affected by this issue is the function formSetEnableWizard of the file /goform/formSetEnableWizard. Such manipulation of the…
CVE-2026-10159 high 8.8 8.8 5d ago A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the function formSysLog of the file /goform/formSysLog. This manipulation of the argument current_page…
CVE-2026-10158 high 8.8 8.8 5d ago A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is the function formPortFw of the file /goform/formPortFw. The manipulation of the argument server_name results in stack-b…
CVE-2026-10157 high 7.3 7.3 5d ago A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file src/amf/ngap-handler.c of the component NGAP PathSwitchRequest Message Handler. The manipulation le…
CVE-2026-10126 high 8.8 8.8 5d ago A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the…
CVE-2026-10125 high 8.8 8.8 5d ago A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulnerability is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. The ma…
CVE-2026-10124 high 8.8 8.8 5d ago A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function rip_zebra_read_ipv4 of the file /usr/sbin/ripd of the component Zserv Handler. Executing a manipulation can lead t…
CVE-2026-10123 high 8.8 8.8 5d ago A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFilter of the file /goform/formSetDomainFilter. Performing a manipulation of the argument blocked_doma…
CVE-2026-10120 high 8.8 8.8 5d ago A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formSetFirewallRule of the file /goform/formSetFirewallRule. The manipulation of the argument firewal…
CVE-2026-10122 high 8.8 8.8 5d ago A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetProtocolFilter of the file /goform/formSetProtocolFilter. Such manipulation of the argument protocol_na…
CVE-2026-10121 high 8.8 8.8 5d ago A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUrlFilter of the file /goform/formSetUrlFilter. This manipulation of the argument keyword_list/keywor…
CVE-2018-25426 high 7.5 7.5 winmtr 5d ago WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the application by sending a malformed payload file containing a large buffer of repeated characters. Attackers c…
CVE-2018-25425 high 8.2 8.2 5d ago Yot CMS 3.3.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the aid and cid parameters. Attackers …
CVE-2018-25424 high 8.2 8.2 5d ago Gate Pass Management System 2.1 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the login and password parameters.…
CVE-2018-25422 high 8.2 8.2 5d ago MOGG web simulator Script contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL commands by injecting malicious code through the id parameter. Attacke…
CVE-2018-25420 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers ca…
CVE-2018-25419 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the genre parameter. Attackers c…
CVE-2018-25418 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the year parameter. Attackers ca…
CVE-2018-25417 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the quality parameter. Attackers…
CVE-2018-25416 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the country parameter. Attackers…
CVE-2018-25415 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the director parameter. Attacker…
CVE-2018-25414 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the actor parameter. Attackers c…
CVE-2018-25413 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'q' parameter. Attackers can…
CVE-2018-25411 high 8.2 8.2 5d ago MGB OpenSource Guestbook 0.7.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter.…
CVE-2018-25410 high 7.1 7.1 5d ago SIM-PKH 2.4.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send G…
CVE-2018-25409 high 8.8 8.8 5d ago SIM-PKH 2.4.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files by submitting PHP code through the fupload parameter. Attackers can upload …
CVE-2018-25408 high 7.5 7.5 5d ago The Open ISES Project 3.30A contains a path traversal vulnerability in the ajax/download.php endpoint that allows unauthenticated attackers to download arbitrary files by manipulating the filename pa…
CVE-2018-25407 high 8.2 8.2 5d ago eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through parameters in mod.php. A…
CVE-2018-25406 high 8.2 8.2 5d ago eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through parameters in mod.php. A…
CVE-2018-25405 high 8.2 8.2 5d ago eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through parameters in mod.php. A…
CVE-2026-10119 high 8.8 8.8 5d ago A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Impacted is the function formSetMACFilter of the file /goform/formSetMACFilter. The manipulation of the argument filter_name…
CVE-2026-46242 unknown FIX debian debianwindows windows sles 5d ago In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix ep_remove struct eventpoll / struct file UAF ep_remove() (via ep_remove_file()) cleared file->f_ep under file->f_l…
CVE-2026-9757 high 7.5 7.5 5d ago The GEO my WP plugin for WordPress is vulnerable to SQL Injection via the 'swlatlng' and 'nelatlng' parameters in all versions up to, and including, 4.5.5 The parameters are read from $_SERVER['QUERY…
CVE-2026-7465 high 8.8 8.8 5d ago The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.19.25. This makes it possible f…
CVE-2026-7459 high 7.5 7.5 5d ago The Simple History – Track, Log, and Audit WordPress Changes plugin for WordPress is vulnerable to authenticated (Subscriber+) account takeover in all versions up to, and including, 5.26.0 via the ev…
CVE-2026-10111 high 7.3 7.3 5d ago A flaw has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0. This impacts an unknown function of the component Login Page. Executing a manipulation of the argument email can lead to sql injectio…
CVE-2026-10110 high 7.3 7.3 5d ago A vulnerability was detected in code-projects Student Details Management System 1.0. This affects an unknown function of the file /index.php. Performing a manipulation of the argument roll results in…
CVE-2026-47416 unknown 6d ago praisonai-platform: Any workspace member can promote themselves or others to owner via PATCH /workspaces/{id}/members/{user_id}
CVE-2026-47409 unknown 6d ago praisonai-platform: Missing authorization on member removal enables full workspace takeover by any user regardless of role
CVE-2026-47414 unknown 6d ago praisonai-platform: Label endpoints' unchecked label_id/issue_id enable cross-workspace label IDOR (edit, delete, link)
CVE-2026-47406 unknown 6d ago praisonai-platform: IDOR in dependency endpoints allows cross-workspace issue linking, reading, and deletion due to missing ownership checks
CVE-2026-47410 unknown 6d ago praisonai-platform: JWT signing key defaults to hardcoded "dev-secret-change-me", allowing token forgery for any user when PLATFORM_ENV is unset
CVE-2026-47405 unknown 6d ago PraisonAI Platform: Missing role checks let any workspace member become owner and control workspace membership
CVE-2026-47399 unknown 6d ago PraisonAI Platform workspace-scoped routes allow cross-workspace object access by global object ID
CVE-2026-47407 unknown 6d ago PraisonAI Platform has a cross-workspace IDOR + member-role privilege escalation
CVE-2026-47408 unknown 6d ago praisonai-platform: list_issue_activity returns activity log for any issue regardless of workspace ownership
CVE-2026-48169 unknown 6d ago PraisonAI has Cross-Workspace IDOR and Privilege Escalation via Platform API
CVE-2026-47397 unknown 6d ago PraisonAI has an Arbitrary File Write in Python API
CVE-2026-47391 unknown 6d ago PraisonAI's unauthenticated A2A official example can reach real LLM-driven `eval()` tool execution
CVE-2026-47394 unknown 6d ago PraisonAI vulnerable to unauthenticated arbitrary file read via MCP workflow.show, workflow.validate, deploy.validate
CVE-2026-47392 unknown 6d ago PraisonAI vulnerable to sandbox escape via `print.__self__` builtins module leak in `execute_code` (subprocess mode)
CVE-2026-47395 unknown 6d ago PraisonAI CLI automatically resolves @url mentions in prompt text and can read loopback URLs into model context
CVE-2026-47393 unknown 6d ago PraisonAI `deploy --type api` emits a Flask server with authentication disabled by default
CVE-2026-47396 unknown 6d ago PraisonAI call server exposes unauthenticated agent listing, invocation, and deletion when CALL_SERVER_TOKEN is unset
CVE-2026-47390 unknown 6d ago PraisonAI spider_tools SSRF protection bypass via alternate loopback host encodings
CVE-2026-47398 unknown 6d ago PraisonAI: Arbitrary code execution via unguarded `spec.loader.exec_module` in `agents_generator.py` - sibling of CVE-2026-44334
CVE-2026-47268 unknown 6d ago Nezha's authenticated DDNS webhook configuration allows blind SSRF from the dashboard host
CVE-2026-47233 unknown 6d ago Admidio: Any logged-in user can delete inventory fields via `mode=field_delete` — incomplete fix of #2024
CVE-2026-47234 unknown 6d ago Admidio writes session IDs and auto-login cookie values to application logs
CVE-2026-47232 unknown 6d ago Admidio PKCS#12 private key export action lacks CSRF protection
CVE-2026-47231 unknown 6d ago Admidio has IDOR in `documents-files.php` `mode=move_save` that lets any folder-uploader exfiltrate files from private folders
CVE-2026-47230 unknown 6d ago Admidio: IDOR in documents-files.php allows cross-folder file rename and description changes by unauthorized uploaders
CVE-2026-47229 unknown 6d ago Admidio: CSRF in SSO client `enable` action toggles SAML/OIDC clients without token validation
CVE-2026-47228 unknown 6d ago Admidio's CSRF in registration `send_login` mode resets arbitrary user passwords
CVE-2026-47227 unknown 6d ago Admidio module-administrator can delete or reorder categories owned by other modules via dead authorization check in `modules/categories.php`
CVE-2026-47226 unknown 6d ago Admidio: Authorization bypass in file_delete enables cross-folder file removal by authenticated users without delete privileges
CVE-2026-47213 unknown 6d ago BoxLite has a Timeout Bypass Vulnerability
CVE-2026-47211 unknown 6d ago ouroboros-ai Vulnerable to Remote Code Execution via Untrusted Project-Directory .env
CVE-2026-47203 unknown 6d ago Authelia Missing Username Canonicalization in Basic Auth (LDAP)
CVE-2026-47201 high 8.5 8.5 6d ago authentik is an open-source identity provider. Prior to versions 2025.12.5, 2026.2.3, and 2026.5.1, authentik's SAML Source ACS endpoint is vulnerable to XML Signature Wrapping when validating upstre…
CVE-2026-47695 unknown 6d ago CC-Tweaked has an SSRF Protection Bypass with NAT64
CVE-2026-47184 unknown 6d ago zeroconf has unbounded DNS record cache that allows LAN-local memory exhaustion via multicast flood
CVE-2026-48557 high 8.8 8.8 6d ago Spatie Laravel Media Library before version 11.23.0 contains a file upload restriction bypass in FileAdder::defaultSanitizer(). The sanitizer checks only the final filename suffix, allowing double-ex…
CVE-2026-47123 high 7.5 7.5 6d ago FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.220, the email processing pipeline in FreeScout's FetchEmails command has two code paths for identifyin…
CVE-2026-46599 high 7.5 7.5 debian debian 6d ago The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height and encoded s…