|
11
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in Acrel Electrical ECEMS Enterprise Microgrid Energy Efficiency Management System 1.3.0. The impacted element is an unknown function of the file /SubstationWEBV2/main/elecMaxMi…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7694
|
2026-05-3 21:15 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
12
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in Wavlink WL-WN570HA1 R70HA1 V1410_221110. The affected element is the function ping_ddns of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument DDNS re…
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7692
|
2026-05-3 20:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
13
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in Wavlink WL-WN570HA1 R70HA1 V1410_221110. Impacted is the function set_sys_cmd of the file /cgi-bin/adm.cgi. Such manipulation of the argument command lea…
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7691
|
2026-05-3 20:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
14
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in Wavlink WL-WN570HA1 R70HA1 V1410_221110. This issue affects the function set_sys_adm of the file /cgi-bin/adm.cgi. This manipulation of the argument Username causes …
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7690
|
2026-05-3 19:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
15
|
3.7 |
LOW
Network
|
-
|
-
|
A security flaw has been discovered in Dolibarr ERP CRM up to 23.0.2. This vulnerability affects the function dol_verifyHash in the library htdocs/core/lib/security.lib.php of the component Online Si…
New
|
CWE-345
CWE-347
Insufficient Verification of Data Authenticity
Improper Verification of Cryptographic Signature
|
CVE-2026-7689
|
2026-05-3 19:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
16
|
5.0 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in Dolibarr ERP CRM up to 23.0.2. This affects the function _checkValForAPI of the file htdocs/expedition/class/expedition.class.php of the component Shipments API Endp…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7688
|
2026-05-3 19:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
17
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in langflow-ai langflow up to 1.8.4. Affected by this issue is the function CodeParser.parse_callable_details of the file src/lfx/src/lfx/custom/code_parser/code_parser…
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7687
|
2026-05-3 18:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
18
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in eyeo Adblock Plus up to 4.36.2 on Chrome. Affected by this vulnerability is the function postMessage of the file premium.preload.js of the component Legacy Premium Activa…
New
|
CWE-266
CWE-284
Incorrect Privilege Assignment
Improper Access Control
|
CVE-2026-7686
|
2026-05-3 17:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
19
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway results in buffer ove…
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7685
|
2026-05-3 16:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
20
|
8.8 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in Edimax BR-6428nC up to 1.16. This impacts an unknown function of the file /goform/setWAN. Such manipulation of the argument pptpDfGateway leads to buffe…
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7684
|
2026-05-3 16:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
