🚨 CVE-2026-7409
A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function save_user of the file /admin/ajax.php?action=save_user. Executing a manipulation can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used.
🎖@cveNotify
A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function save_user of the file /admin/ajax.php?action=save_user. Executing a manipulation can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used.
🎖@cveNotify
GitHub
Pizzafy_1/03-exploit.md at main · r3ng4f/Pizzafy_1
Contribute to r3ng4f/Pizzafy_1 development by creating an account on GitHub.
🚨 CVE-2026-7410
A vulnerability has been found in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=add_to_cart. The manipulation of the argument pid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
🎖@cveNotify
A vulnerability has been found in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=add_to_cart. The manipulation of the argument pid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
🎖@cveNotify
GitHub
Pizzafy_1/04-exploit.md at main · r3ng4f/Pizzafy_1
Contribute to r3ng4f/Pizzafy_1 development by creating an account on GitHub.
🚨 CVE-2026-7416
A vulnerability was found in PolarVista xcode-mcp-server 1.0.0. This issue affects the function build_project/run_tests of the file src/index.ts of the component MCP Interface. The manipulation of the argument Request results in os command injection. The attack may be launched remotely. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
🎖@cveNotify
A vulnerability was found in PolarVista xcode-mcp-server 1.0.0. This issue affects the function build_project/run_tests of the file src/index.ts of the component MCP Interface. The manipulation of the argument Request results in os command injection. The attack may be launched remotely. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
🎖@cveNotify
GitHub
OS Command Injection Vulnerability in build_project and run_tests of xcode-mcp-server · Issue #19 · BruceJqs/public_exp
OS Command Injection Vulnerability in build_project and run_tests of xcode-mcp-server 1) CNA / Submission Type Submission type: Report a vulnerability (CVE ID request) Reporter role: Independent se...
🚨 CVE-2026-7417
A vulnerability was found in Algovate xhs-mcp 0.8.11. This affects the function xhs_publish_content of the file src/server/mcp.server.ts of the component MCP Interface. Performing a manipulation of the argument media_paths results in server-side request forgery. The attack may be initiated remotely. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
🎖@cveNotify
A vulnerability was found in Algovate xhs-mcp 0.8.11. This affects the function xhs_publish_content of the file src/server/mcp.server.ts of the component MCP Interface. Performing a manipulation of the argument media_paths results in server-side request forgery. The attack may be initiated remotely. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
🎖@cveNotify
GitHub
GitHub - Algovate/xhs-mcp: 用于小红书(xiaohongshu.com)的 Model Context Protocol(MCP)服务器与 CLI 工具,支持登录、发布、搜索、推荐等自动化能力
用于小红书(xiaohongshu.com)的 Model Context Protocol(MCP)服务器与 CLI 工具,支持登录、发布、搜索、推荐等自动化能力 - Algovate/xhs-mcp
🚨 CVE-2026-7418
A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.
🎖@cveNotify
A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.
🎖@cveNotify
GitHub
IOTvulner/4035/1/1.md at main · kirlic123/IOTvulner
漏洞库. Contribute to kirlic123/IOTvulner development by creating an account on GitHub.
🚨 CVE-2026-7419
A vulnerability was identified in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of the file route/goform/formTaskEdit_ap. The manipulation of the argument Profile leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
🎖@cveNotify
A vulnerability was identified in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of the file route/goform/formTaskEdit_ap. The manipulation of the argument Profile leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
🎖@cveNotify
GitHub
IOTvulner/4035/2/2.md at main · kirlic123/IOTvulner
漏洞库. Contribute to kirlic123/IOTvulner development by creating an account on GitHub.
🚨 CVE-2026-4775
A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution.
🎖@cveNotify
A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution.
🎖@cveNotify
🚨 CVE-2026-5683
A vulnerability was found in Tenda CX12L 16.03.53.12. Affected by this vulnerability is the function fromP2pListFilter of the file /goform/P2pListFilter. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack must originate from the local network. The exploit has been made public and could be used.
🎖@cveNotify
A vulnerability was found in Tenda CX12L 16.03.53.12. Affected by this vulnerability is the function fromP2pListFilter of the file /goform/P2pListFilter. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack must originate from the local network. The exploit has been made public and could be used.
🎖@cveNotify
GitHub
Tenda Router CX12L V16.03.53.12 - Buffer Overflow in `/goform/P2pListFilter` · Issue #1 · cve-a/lvdan
NAME OF AFFECTED PRODUCT(S) Tenda Router CX12L V16.03.53.12 - Buffer Overflow in /goform/P2pListFilter Vulnerability Details Detail Information Vendor Shenzhen Jixiang Tengda Technology Co., Ltd. P...
🚨 CVE-2026-5684
A vulnerability was determined in Tenda CX12L 16.03.53.12. Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack requires access to the local network. The exploit has been publicly disclosed and may be utilized.
🎖@cveNotify
A vulnerability was determined in Tenda CX12L 16.03.53.12. Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack requires access to the local network. The exploit has been publicly disclosed and may be utilized.
🎖@cveNotify
GitHub
Tenda Router CX12L V16.03.53.12 - Buffer Overflow in `/goform/webExcptypemanFilter · Issue #2 · cve-a/lvdan
NAME OF AFFECTED PRODUCT(S) Tenda Router CX12L V16.03.53.12 - Buffer Overflow in /goform/webExcptypemanFilter Vulnerability Details Detail Information Vendor Shenzhen Jixiang Tengda Technology Co.,...
🚨 CVE-2026-5830
A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysToolChangePwd. Such manipulation of the argument oldPwd/newPwd/cfmPwd leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
🎖@cveNotify
A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysToolChangePwd. Such manipulation of the argument oldPwd/newPwd/cfmPwd leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
🎖@cveNotify
🚨 CVE-2026-5979
A vulnerability was detected in D-Link DIR-605L 2.13B01. Affected by this vulnerability is the function formVirtualServ of the file /goform/formVirtualServ of the component POST Request Handler. The manipulation of the argument curTime results in buffer overflow. The attack can be launched remotely. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
🎖@cveNotify
A vulnerability was detected in D-Link DIR-605L 2.13B01. Affected by this vulnerability is the function formVirtualServ of the file /goform/formVirtualServ of the component POST Request Handler. The manipulation of the argument curTime results in buffer overflow. The attack can be launched remotely. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
🎖@cveNotify
lavender-bicycle-a5a on Notion
D-Link-DIR-605L-formVirtualServ | Notion
Overview
🚨 CVE-2026-5980
A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /goform/formSetMACFilter of the component POST Request Handler. This manipulation of the argument curTime causes buffer overflow. The attack may be initiated remotely. The exploit has been published and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
🎖@cveNotify
A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /goform/formSetMACFilter of the component POST Request Handler. This manipulation of the argument curTime causes buffer overflow. The attack may be initiated remotely. The exploit has been published and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
🎖@cveNotify
lavender-bicycle-a5a on Notion
D-Link-DIR-605L-formSetMACFilter | Notion
Overview
🚨 CVE-2025-54236
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input Validation vulnerability. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality, and integrity impact to high. Exploitation of this issue does not require user interaction.
🎖@cveNotify
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input Validation vulnerability. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality, and integrity impact to high. Exploitation of this issue does not require user interaction.
🎖@cveNotify
Adobe
Adobe Security Bulletin
Security Updates Available for Adobe Commerce | APSB25-88
🚨 CVE-2026-2339
Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows Remote Code Inclusion, Privilege Abuse, Command Injection.This issue affects Liderahenk: before 3.5.1.
🎖@cveNotify
Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows Remote Code Inclusion, Privilege Abuse, Command Injection.This issue affects Liderahenk: before 3.5.1.
🎖@cveNotify
🚨 CVE-2026-4731
Integer Overflow or Wraparound vulnerability in artraweditor ART (rtengine modules). This vulnerability is associated with program files dcraw.C.
This issue affects ART: before 1.25.12.
🎖@cveNotify
Integer Overflow or Wraparound vulnerability in artraweditor ART (rtengine modules). This vulnerability is associated with program files dcraw.C.
This issue affects ART: before 1.25.12.
🎖@cveNotify
GitHub
Potential Vulnerability in Cloned Code by tabudz · Pull Request #427 · artraweditor/ART
Summary
Our tool detected a potential vulnerability in rtengine/dcraw.c which was cloned from LibRaw/LibRaw but did not receive the security patch applied. The original issue was reported and fixed...
Our tool detected a potential vulnerability in rtengine/dcraw.c which was cloned from LibRaw/LibRaw but did not receive the security patch applied. The original issue was reported and fixed...
🚨 CVE-2026-4732
Out-of-bounds Read vulnerability in tildearrow furnace (extern/libsndfile-modified/src modules). This vulnerability is associated with program files flac.C.
This issue affects furnace: before 0.7.
🎖@cveNotify
Out-of-bounds Read vulnerability in tildearrow furnace (extern/libsndfile-modified/src modules). This vulnerability is associated with program files flac.C.
This issue affects furnace: before 0.7.
🎖@cveNotify
GitHub
Potential Vulnerability in Cloned Code by pr-hung · Pull Request #2812 · tildearrow/furnace
Summary
This PR fixes a potential security vulnerability in cloned code that appears to have missed an upstream security patch.
Details
Affected file: extern/libsndfile-modified/src/flac.c
Upstrea...
This PR fixes a potential security vulnerability in cloned code that appears to have missed an upstream security patch.
Details
Affected file: extern/libsndfile-modified/src/flac.c
Upstrea...
🚨 CVE-2026-4733
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ixray-team ixray-1.6-stcop.This issue affects ixray-1.6-stcop: before 1.3.
🎖@cveNotify
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ixray-team ixray-1.6-stcop.This issue affects ixray-1.6-stcop: before 1.3.
🎖@cveNotify
GitHub
Potential Vulnerability in Cloned Code by tabudz · Pull Request #259 · ixray-team/ixray-1.6-stcop
Summary
Our tool detected a potential vulnerability in src/3rd-party/crypto/openssl/src/tasn_dec.c which was cloned from openssl/openssl but did not receive the security patch applied. The original...
Our tool detected a potential vulnerability in src/3rd-party/crypto/openssl/src/tasn_dec.c which was cloned from openssl/openssl but did not receive the security patch applied. The original...
🚨 CVE-2026-4734
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in yoyofr modizer (libs/libopenmpt/openmpt-trunk/include/premake/contrib/curl/lib modules). This vulnerability is associated with program files imap.C.
This issue affects modizer: before v4.3.
🎖@cveNotify
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in yoyofr modizer (libs/libopenmpt/openmpt-trunk/include/premake/contrib/curl/lib modules). This vulnerability is associated with program files imap.C.
This issue affects modizer: before v4.3.
🎖@cveNotify
GitHub
Fix potential vulnerability in cloned code by manh-td · Pull Request #141 · yoyofr/modizer
This PR fixes a potential security vulnerability in imap_state_fetch_resp that was cloned from curl/curl but did not receive the security patch.
Vulnerability Details:
Affected Function: imap_stat...
Vulnerability Details:
Affected Function: imap_stat...
🚨 CVE-2026-4735
Deserialization of Untrusted Data vulnerability in DTStack chunjun (chunjun-core/src/main/java/com/dtstack/chunjun/util modules). This vulnerability is associated with program files GsonUtil.Java.
This issue affects chunjun: before 1.16.1.
🎖@cveNotify
Deserialization of Untrusted Data vulnerability in DTStack chunjun (chunjun-core/src/main/java/com/dtstack/chunjun/util modules). This vulnerability is associated with program files GsonUtil.Java.
This issue affects chunjun: before 1.16.1.
🎖@cveNotify
GitHub
fix(sec): fix JSON parsing stack overflow vulnerabilities by scyt01 · Pull Request #1939 · DTStack/chunjun
Purpose of this pull request
This PR addresses a potential vulnerability in the read() function in chunjun-core/src/main/java/com/dtstack/chunjun/util/GsonUtil.java sourced from DTStack/chunjun th...
This PR addresses a potential vulnerability in the read() function in chunjun-core/src/main/java/com/dtstack/chunjun/util/GsonUtil.java sourced from DTStack/chunjun th...
🚨 CVE-2026-4736
Improper Handling of Values vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/include/net/netfilter modules). This vulnerability is associated with program files nf_tables.H, nft_byteorder.C, nft_meta.C.
This issue affects Echo-Mate: before V250329.
🎖@cveNotify
Improper Handling of Values vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/include/net/netfilter modules). This vulnerability is associated with program files nf_tables.H, nft_byteorder.C, nft_meta.C.
This issue affects Echo-Mate: before V250329.
🎖@cveNotify
GitHub
Fix potential vulnerability in cloned code by manh-td · Pull Request #8 · No-Chicken/Echo-Mate
This PR fixes a potential security vulnerability in nft_byteorder_eval() that was cloned from torvalds/linux but did not receive the security patch.
Details:
Affected Function: nft_byteorder_eval()...
Details:
Affected Function: nft_byteorder_eval()...
🚨 CVE-2026-4737
Use After Free vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/mm modules). This vulnerability is associated with program files rmap.C.
This issue affects Echo-Mate: before V250329.
🎖@cveNotify
Use After Free vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/mm modules). This vulnerability is associated with program files rmap.C.
This issue affects Echo-Mate: before V250329.
🎖@cveNotify
GitHub
Fix potential vulnerability in cloned code by manh-td · Pull Request #9 · No-Chicken/Echo-Mate
This PR fixes a potential security vulnerability in anon_vma->degree that was cloned from torvalds/linux but did not receive the security patch.
Details:
Affected Function: anon_vma->...
Details:
Affected Function: anon_vma->...