VIR Vulnerability Intelligence Relay

Search

Found 89,565 results in 3307ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-10163 high 8.8 8.8 5d ago A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of t…
CVE-2026-10162 high 8.8 8.8 5d ago A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects the function formSetPassword of the file /goform/formSetPassword. Executing a manipulation of the argument webpage can…
CVE-2026-10161 high 8.8 8.8 5d ago A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. This affects the function formResetStatistic of the file /goform/formResetStatistic. Performing a manipulation of the argument status_stat…
CVE-2026-10160 high 8.8 8.8 5d ago A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Affected by this issue is the function formSetEnableWizard of the file /goform/formSetEnableWizard. Such manipulation of the…
CVE-2026-10159 high 8.8 8.8 5d ago A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the function formSysLog of the file /goform/formSysLog. This manipulation of the argument current_page…
CVE-2026-10158 high 8.8 8.8 5d ago A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is the function formPortFw of the file /goform/formPortFw. The manipulation of the argument server_name results in stack-b…
CVE-2026-10157 high 7.3 7.3 5d ago A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file src/amf/ngap-handler.c of the component NGAP PathSwitchRequest Message Handler. The manipulation le…
CVE-2026-10156 medium 4.3 4.3 5d ago A vulnerability was determined in Open5GS up to 2.7.7. This affects the function handle_amf_info in the library /lib/sbi/nnrf-handler.c of the component nf-instances Endpoint. Executing a manipulatio…
CVE-2026-10155 medium 4.7 4.7 5d ago A vulnerability was found in Bdtask Multi-Store Inventory Management System 1.0. The impacted element is the function accounts_report_search of the file application/modules/accounts/controllers/Accou…
CVE-2026-10154 medium 4.3 4.3 5d ago A vulnerability has been found in Dolibarr ERP CRM 23.0.0/23.0.1/23.0.2. The affected element is an unknown function of the file htdocs/user/messaging.php. Such manipulation of the argument ID leads …
CVE-2026-10153 medium 4.3 4.3 5d ago A flaw has been found in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is the function Search of the file org/springframework/cache/support/AbstractCacheManager.java. Th…
CVE-2026-10152 medium 6.3 6.3 5d ago A vulnerability was detected in TaleLin lin-cms-spring-boot up to 0.2.1. This issue affects some unknown processing of the file src/main/java/io/github/talelin/latticy/controller/v1/BookController.ja…
CVE-2026-10127 medium 6.3 6.3 5d ago A weakness has been identified in Edimax BR-6478AC 1.23. This affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. This manipulation of the …
CVE-2026-10126 high 8.8 8.8 5d ago A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the…
CVE-2026-8594 medium 6.2 6.2 debian debian 5d ago Text::LineFold versions through 2019.001 for Perl duplicate the output based on the number of special break characters. Text::LineFold splits the input string by specific line break characters (such…
CVE-2026-10125 high 8.8 8.8 5d ago A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulnerability is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. The ma…
CVE-2026-10124 high 8.8 8.8 5d ago A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function rip_zebra_read_ipv4 of the file /usr/sbin/ripd of the component Zserv Handler. Executing a manipulation can lead t…
CVE-2026-10123 high 8.8 8.8 5d ago A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFilter of the file /goform/formSetDomainFilter. Performing a manipulation of the argument blocked_doma…
CVE-2026-10120 high 8.8 8.8 5d ago A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formSetFirewallRule of the file /goform/formSetFirewallRule. The manipulation of the argument firewal…
CVE-2026-10122 high 8.8 8.8 5d ago A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetProtocolFilter of the file /goform/formSetProtocolFilter. Such manipulation of the argument protocol_na…
CVE-2026-10121 high 8.8 8.8 5d ago A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUrlFilter of the file /goform/formSetUrlFilter. This manipulation of the argument keyword_list/keywor…
CVE-2018-25426 high 7.5 7.5 winmtr 5d ago WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the application by sending a malformed payload file containing a large buffer of repeated characters. Attackers c…
CVE-2018-25425 high 8.2 8.2 5d ago Yot CMS 3.3.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the aid and cid parameters. Attackers …
CVE-2018-25424 high 8.2 8.2 5d ago Gate Pass Management System 2.1 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the login and password parameters.…
CVE-2018-25423 medium 6.2 6.2 5d ago Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a malicious buffer of 700 byte…
CVE-2018-25422 high 8.2 8.2 5d ago MOGG web simulator Script contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL commands by injecting malicious code through the id parameter. Attacke…
CVE-2018-25421 medium 6.5 6.5 5d ago Open STA Manager 2.3 contains a path traversal vulnerability that allows authenticated users to download arbitrary files by manipulating the file parameter. Attackers can send GET requests to modules…
CVE-2018-25420 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers ca…
CVE-2018-25419 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the genre parameter. Attackers c…
CVE-2018-25418 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the year parameter. Attackers ca…
CVE-2018-25417 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the quality parameter. Attackers…
CVE-2018-25416 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the country parameter. Attackers…
CVE-2018-25415 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the director parameter. Attacker…
CVE-2018-25414 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the actor parameter. Attackers c…
CVE-2018-25413 high 8.2 8.2 5d ago AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'q' parameter. Attackers can…
CVE-2018-25411 high 8.2 8.2 5d ago MGB OpenSource Guestbook 0.7.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter.…
CVE-2018-25410 high 7.1 7.1 5d ago SIM-PKH 2.4.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send G…
CVE-2018-25409 high 8.8 8.8 5d ago SIM-PKH 2.4.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files by submitting PHP code through the fupload parameter. Attackers can upload …
CVE-2018-25408 high 7.5 7.5 5d ago The Open ISES Project 3.30A contains a path traversal vulnerability in the ajax/download.php endpoint that allows unauthenticated attackers to download arbitrary files by manipulating the filename pa…
CVE-2018-25407 high 8.2 8.2 5d ago eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through parameters in mod.php. A…
CVE-2018-25406 high 8.2 8.2 5d ago eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through parameters in mod.php. A…
CVE-2018-25405 high 8.2 8.2 5d ago eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through parameters in mod.php. A…
CVE-2026-10119 high 8.8 8.8 5d ago A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Impacted is the function formSetMACFilter of the file /goform/formSetMACFilter. The manipulation of the argument filter_name…
CVE-2026-46242 unknown FIX debian debianwindows windows sles 5d ago In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix ep_remove struct eventpoll / struct file UAF ep_remove() (via ep_remove_file()) cleared file->f_ep under file->f_l…
CVE-2026-10117 medium 4.3 4.3 5d ago A weakness has been identified in Open5GS up to 2.7.7. This issue affects the function ogs_pool_id_calloc in the library /lib/sbi/nghttp2-server.c. Executing a manipulation can lead to denial of serv…
CVE-2026-10116 medium 4.3 4.3 5d ago A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs_sbi_xact_add in the library /lib/core/ogs-timer.c of the component ue-authentications Endpoint.…
CVE-2026-9757 high 7.5 7.5 6d ago The GEO my WP plugin for WordPress is vulnerable to SQL Injection via the 'swlatlng' and 'nelatlng' parameters in all versions up to, and including, 4.5.5 The parameters are read from $_SERVER['QUERY…
CVE-2026-7465 high 8.8 8.8 6d ago The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.19.25. This makes it possible f…
CVE-2026-7459 high 7.5 7.5 6d ago The Simple History – Track, Log, and Audit WordPress Changes plugin for WordPress is vulnerable to authenticated (Subscriber+) account takeover in all versions up to, and including, 5.26.0 via the ev…
CVE-2026-10115 medium 4.3 4.3 6d ago A vulnerability was identified in Open5GS up to 2.7.7. This affects an unknown part in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. Such manipulation leads to denial …
CVE-2026-10114 medium 4.3 4.3 6d ago A vulnerability was determined in Open5GS up to 2.7.7. Affected by this issue is the function handle_scp_info in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. This man…
CVE-2026-10113 medium 4.3 4.3 6d ago A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is an unknown functionality in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. The manip…
CVE-2026-5071 medium 6.1 6.1 6d ago The SocketCAN implementation validates the length of a user-provided buffer containing a socketcan_frame object using only a NET_ASSERT statement in zcan_sendto_ctx() before dereferencing it in socke…
CVE-2026-10111 high 7.3 7.3 6d ago A flaw has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0. This impacts an unknown function of the component Login Page. Executing a manipulation of the argument email can lead to sql injectio…
CVE-2026-10110 high 7.3 7.3 6d ago A vulnerability was detected in code-projects Student Details Management System 1.0. This affects an unknown function of the file /index.php. Performing a manipulation of the argument roll results in…
CVE-2026-48840 medium 5.3 5.3 FIX debian debian exim 6d ago Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client.
CVE-2026-47416 unknown 6d ago praisonai-platform: Any workspace member can promote themselves or others to owner via PATCH /workspaces/{id}/members/{user_id}
CVE-2026-47409 unknown 6d ago praisonai-platform: Missing authorization on member removal enables full workspace takeover by any user regardless of role
CVE-2026-47414 unknown 6d ago praisonai-platform: Label endpoints' unchecked label_id/issue_id enable cross-workspace label IDOR (edit, delete, link)
CVE-2026-47406 unknown 6d ago praisonai-platform: IDOR in dependency endpoints allows cross-workspace issue linking, reading, and deletion due to missing ownership checks
CVE-2026-47410 unknown 6d ago praisonai-platform: JWT signing key defaults to hardcoded "dev-secret-change-me", allowing token forgery for any user when PLATFORM_ENV is unset
CVE-2026-47405 unknown 6d ago PraisonAI Platform: Missing role checks let any workspace member become owner and control workspace membership
CVE-2026-47399 unknown 6d ago PraisonAI Platform workspace-scoped routes allow cross-workspace object access by global object ID
CVE-2026-47407 unknown 6d ago PraisonAI Platform has a cross-workspace IDOR + member-role privilege escalation
CVE-2026-47408 unknown 6d ago praisonai-platform: list_issue_activity returns activity log for any issue regardless of workspace ownership
CVE-2026-48169 unknown 6d ago PraisonAI has Cross-Workspace IDOR and Privilege Escalation via Platform API
CVE-2026-47397 unknown 6d ago PraisonAI has an Arbitrary File Write in Python API
CVE-2026-47391 unknown 6d ago PraisonAI's unauthenticated A2A official example can reach real LLM-driven `eval()` tool execution
CVE-2026-47394 unknown 6d ago PraisonAI vulnerable to unauthenticated arbitrary file read via MCP workflow.show, workflow.validate, deploy.validate
CVE-2026-47392 unknown 6d ago PraisonAI vulnerable to sandbox escape via `print.__self__` builtins module leak in `execute_code` (subprocess mode)
CVE-2026-47395 unknown 6d ago PraisonAI CLI automatically resolves @url mentions in prompt text and can read loopback URLs into model context
CVE-2026-47393 unknown 6d ago PraisonAI `deploy --type api` emits a Flask server with authentication disabled by default
CVE-2026-47396 unknown 6d ago PraisonAI call server exposes unauthenticated agent listing, invocation, and deletion when CALL_SERVER_TOKEN is unset
CVE-2026-47390 unknown 6d ago PraisonAI spider_tools SSRF protection bypass via alternate loopback host encodings
CVE-2026-47398 unknown 6d ago PraisonAI: Arbitrary code execution via unguarded `spec.loader.exec_module` in `agents_generator.py` - sibling of CVE-2026-44334
CVE-2026-9831 medium 6.3 6.3 6d ago A race condition in the shared Extreme Platform ONE IAM Gateway API-key authentication path could, under specific high-concurrency traffic conditions, intermittently allow requests authenticated with…
CVE-2026-47268 unknown 6d ago Nezha's authenticated DDNS webhook configuration allows blind SSRF from the dashboard host
CVE-2026-47233 unknown 6d ago Admidio: Any logged-in user can delete inventory fields via `mode=field_delete` — incomplete fix of #2024
CVE-2026-47234 unknown 6d ago Admidio writes session IDs and auto-login cookie values to application logs
CVE-2026-47232 unknown 6d ago Admidio PKCS#12 private key export action lacks CSRF protection
CVE-2026-47231 unknown 6d ago Admidio has IDOR in `documents-files.php` `mode=move_save` that lets any folder-uploader exfiltrate files from private folders
CVE-2026-47230 unknown 6d ago Admidio: IDOR in documents-files.php allows cross-folder file rename and description changes by unauthorized uploaders
CVE-2026-47229 unknown 6d ago Admidio: CSRF in SSO client `enable` action toggles SAML/OIDC clients without token validation
CVE-2026-47228 unknown 6d ago Admidio's CSRF in registration `send_login` mode resets arbitrary user passwords
CVE-2026-47227 unknown 6d ago Admidio module-administrator can delete or reorder categories owned by other modules via dead authorization check in `modules/categories.php`
CVE-2026-47226 unknown 6d ago Admidio: Authorization bypass in file_delete enables cross-folder file removal by authenticated users without delete privileges
CVE-2026-47213 unknown 6d ago BoxLite has a Timeout Bypass Vulnerability
CVE-2026-47211 unknown 6d ago ouroboros-ai Vulnerable to Remote Code Execution via Untrusted Project-Directory .env
CVE-2026-47203 unknown 6d ago Authelia Missing Username Canonicalization in Basic Auth (LDAP)
CVE-2026-47201 high 8.5 8.5 goauthentik 6d ago authentik is an open-source identity provider. Prior to versions 2025.12.5, 2026.2.3, and 2026.5.1, authentik's SAML Source ACS endpoint is vulnerable to XML Signature Wrapping when validating upstre…
CVE-2026-47695 unknown 6d ago CC-Tweaked has an SSRF Protection Bypass with NAT64
CVE-2026-47184 unknown 6d ago zeroconf has unbounded DNS record cache that allows LAN-local memory exhaustion via multicast flood
CVE-2026-48811 medium 4.3 4.3 6d ago FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.221, FreeScout allows a non-admin user to permanently delete an internal note (private thread) from any…
CVE-2026-48810 medium 4.3 4.3 6d ago FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.221, while investigating the ThreadPolicy::delete issue reported previously, the same missing mailbox m…
CVE-2026-48557 high 8.8 8.8 6d ago Spatie Laravel Media Library before version 11.23.0 contains a file upload restriction bypass in FileAdder::defaultSanitizer(). The sanitizer checks only the final filename suffix, allowing double-ex…
CVE-2026-47123 high 7.5 7.5 6d ago FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.220, the email processing pipeline in FreeScout's FetchEmails command has two code paths for identifyin…
CVE-2026-46599 high 7.5 7.5 debian debian 6d ago The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height and encoded s…
CVE-2026-46527 high 7.5 7.5 debian debian sles yhirose 6d ago cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0, When the server has called Server::set_trusted_proxies() with a non-empty trusted-proxy list, an att…
CVE-2026-45294 medium 5.3 5.3 6d ago FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.219, the password reset endpoint returns visually distinct responses depending on whether the submitted…
CVE-2026-45151 unknown 6d ago NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In 0.24.8 and earlier, quic_stream_recv can dereference a null substream pointer when a substream is in reopen state. The code fi…