|
2991
|
8.8 |
HIGH
Network
|
-
|
-
|
A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects the function formSetPassword of the file /goform/formSetPassword. Executing a manipulation of the argument webpage can…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-10162
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2992
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of t…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-10166
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2993
|
5.3 |
MEDIUM
Network
|
-
|
-
|
The Advanced Custom Fields (ACF®) plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 6.8.1. This is due to the plugin not properly verifying that a user …
|
CWE-862
Missing Authorization
|
CVE-2026-8382
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2994
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. This impacts the function sign_auth_cookie of the file appl…
|
CWE-287
Improper Authentication
|
CVE-2026-10167
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2995
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected is the function marks of the file appl…
|
CWE-99
Resource Injection
|
CVE-2026-10168
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2996
|
3.7 |
LOW
Network
|
-
|
-
|
A vulnerability was detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected by this vulnerability is the function ajax_forgot_pa…
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2026-10169
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2997
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in code-projects Visitor Management System 1.0. Affected by this issue is some unknown functionality of the file /vms/php/phone_0.php. This manipulation of the argument phone ca…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10170
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2998
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. Such manipulation of the argument ID leads to …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10171
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2999
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in Bdtask Multi-Store Inventory Management System 1.0. The affected element is the function Upload of the file application/modules/dashboard/controllers/Module.php…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-10172
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3000
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in Aider-AI Aider 0.86.3. Affected is an unknown function of the file aider/args.py of the component Pre-commit Hook Handler. Such manipulation of the argument git-comm…
|
CWE-693
Protection Mechanism Failure
|
CVE-2026-10174
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
