|
311
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The…
New
|
CWE-259
CWE-798
Use of Hard-coded Password
Use of Hard-coded Credentials
|
CVE-2026-7579
|
2026-05-2 00:26 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312
|
5.3 |
MEDIUM
Local
|
-
|
-
|
A vulnerability was detected in Exiftool up to 13.53. Impacted is the function Process_mrld of the file lib/Image/ExifTool/GM.pm of the component JPEG/QuickTime/MOV/MP4. The manipulation of the argum…
New
|
CWE-74
CWE-94
Injection
Code Injection
|
CVE-2026-7580
|
2026-05-2 00:26 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in alexta69 MeTube up to 2026.04.09. This affects the function on_prepare of the file app/main.py of the component CORS Policy. The manipulation leads to pe…
New
|
CWE-346
CWE-942
Origin Validation Error
Permissive Cross-domain Policy with Untrusted Domains
|
CVE-2026-7581
|
2026-05-2 00:26 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314
|
5.3 |
MEDIUM
Network
|
-
|
-
|
The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wp_ajax…
New
|
CWE-862
Missing Authorization
|
CVE-2026-3143
|
2026-05-2 00:26 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315
|
5.3 |
MEDIUM
Local
|
-
|
-
|
A vulnerability was detected in AcademySoftwareFoundation OpenImageIO up to 3.2.0.1-dev. This vulnerability affects unknown code of the file src/dds.imageio/ddsinput.cpp of the component DDS Image Ha…
New
|
CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Write
|
CVE-2026-7582
|
2026-05-2 00:26 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in Open5GS up to 2.7.7. This issue affects the function bsf_sess_find_by_ipv6prefix of the file /src/bsf/context.c of the component BSF. This manipulation of the argument ipv6Pr…
New
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7583
|
2026-05-2 00:26 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317
|
5.6 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in D-Link M60 up to 1.20B02. Affected by this issue is some unknown functionality of the file /usr/bin/httpd. This manipulation causes weak password recovery. The attac…
New
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2026-7554
|
2026-05-2 00:26 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: use check_add_overflow() to prevent u16 DACL size overflow
set_posix_acl_entries_dacl() and set_ntacl_dacl() accumulate AC…
New
|
-
|
CVE-2026-31704
|
2026-05-2 00:24 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix dir separator in SMB1 UNIX mounts
When calling cifs_mount_get_tcon() with SMB1 UNIX mounts,
@cifs_sb->mnt_cifs_f…
New
|
-
|
CVE-2026-31710
|
2026-05-2 00:24 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
320
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
fuse: abort on fatal signal during sync init
When sync init is used and the server exits for some reason (error, crash)
while pro…
New
|
-
|
CVE-2026-31713
|
2026-05-2 00:24 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
