|
471
|
7.5 |
HIGH
Network
|
-
|
-
|
Conditional Fields for Contact Form 7 WordPress plugin through version 2.6.7 contains an uncontrolled resource consumption vulnerability in the Wpcf7cfMailParser class where the hide_hidden_mail_fiel…
New
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2026-25863
|
2026-05-6 04:47 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
472
|
7.7 |
HIGH
Network
|
-
|
-
|
In Argo CD 3.2.0 before 3.2.11 and 3.3.0 before 3.3.9, ServerSideDiff allows reading cleartext Kubernetes Secret data.
Update
|
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
|
CVE-2026-43824
|
2026-05-6 04:47 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
473
|
7.5 |
HIGH
Network
|
-
|
-
|
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and ConvertMeshMultiMaterial() method
New
|
CWE-400
CWE-770
Uncontrolled Resource Consumption
Allocation of Resources Without Limits or Throttling
|
CVE-2025-70069
|
2026-05-6 04:47 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
474
|
6.5 |
MEDIUM
Network
|
-
|
-
|
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXMeshGeometry.cpp, MeshGeometry::MeshGeometry()
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2025-70070
|
2026-05-6 04:47 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
475
|
6.5 |
MEDIUM
Network
|
-
|
-
|
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp, FBXConverter::ConvertMeshMultiMaterial() components
New
|
CWE-125
Out-of-bounds Read
|
CVE-2025-70072
|
2026-05-6 04:47 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
476
|
5.9 |
MEDIUM
Network
|
-
|
-
|
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXParser.cpp, ParseVectorDataArray()
New
|
CWE-400
CWE-770
Uncontrolled Resource Consumption
Allocation of Resources Without Limits or Throttling
|
CVE-2025-70071
|
2026-05-6 04:47 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
477
|
8.8 |
HIGH
Network
|
-
|
-
|
NetBox versions 4.3.5 through 4.5.4 contain a remote code execution vulnerability in the RenderTemplateMixin.get_environment_params() method that allows authenticated users with exporttemplate or con…
New
|
CWE-183
Permissive List of Allowed Inputs
|
CVE-2026-29514
|
2026-05-6 04:47 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
478
|
7.5 |
HIGH
Network
|
-
|
-
|
An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Service (DoS) via supplying a crafted BGP UPDATE message.
New
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-37459
|
2026-05-6 04:47 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
479
|
- |
|
-
|
-
|
WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS command injection vulnerability in the wireless.cgi binary that allow unauthenticated remote attackers to execute arbitrary shell…
New
|
CWE-78
OS Command
|
CVE-2026-41922
|
2026-05-6 04:47 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
480
|
- |
|
-
|
-
|
WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS command injection vulnerability in the internet.cgi binary that allows unauthenticated remote attackers to execute arbitrary shel…
New
|
CWE-78
OS Command
|
CVE-2026-41923
|
2026-05-6 04:47 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
