|
1111
|
6.5 |
MEDIUM
Network
|
b3log
|
siyuan
|
SiYuan is a personal knowledge management system. Prior to 3.6.4, SiYuan configures Mermaid.js with securityLevel: "loose" and htmlLabels: true. In this mode, <img> tags with src attributes survive M…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-40107
|
2026-04-17 05:28 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1112
|
6.1 |
MEDIUM
Network
|
altenar
|
sportsbook
|
Cross Site Scripting vulnerability in Altenar Sportsbook Software Platform (SB2) v.2.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the URL parameter
|
CWE-200
Information Exposure
|
CVE-2026-31262
|
2026-04-17 05:17 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1113
|
7.5 |
HIGH
Network
|
nasm
|
netwide_assembler
|
A heap buffer overflow vulnerability exists in the Netwide Assembler (NASM) due to a lack of bounds checking in the obj_directive() function. This vulnerability can be exploited by a user assembling …
|
CWE-787
Out-of-bounds Write
|
CVE-2026-6067
|
2026-04-17 04:49 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1114
|
6.5 |
MEDIUM
Network
|
nasm
|
netwide_assembler
|
NASM contains a heap use after free vulnerability in response file (-@) processing where a dangling pointer to freed memory is stored in the global depend_file and later dereferenced, as the response…
|
CWE-416
Use After Free
|
CVE-2026-6068
|
2026-04-17 04:48 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1115
|
7.5 |
HIGH
Network
|
nasm
|
netwide_assembler
|
NASM’s disasm() function contains a stack based buffer overflow when formatting disassembly output, allowing an attacker triggered out-of-bounds write when `slen` exceeds the buffer capacity.
|
CWE-787
Out-of-bounds Write
|
CVE-2026-6069
|
2026-04-17 04:48 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1116
|
7.2 |
HIGH
Network
|
couchcms
|
couchcms
|
CouchCMS contains a privilege escalation vulnerability that allows authenticated Admin-level users to create SuperAdmin accounts by tampering with the f_k_levels_list parameter in user creation reque…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-29002
|
2026-04-17 04:41 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1117
|
5.5 |
MEDIUM
Local
|
hdfgroup
|
hdf5
|
HDF5 is software for managing data. In 1.14.1-2 and earlier, an attacker who can control an h5 file parsed by HDF5 can trigger a write-based heap buffer overflow condition in the H5T__ref_mem_setnull…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-29043
|
2026-04-17 04:40 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1118
|
9.6 |
CRITICAL
Network
|
lollms
|
lollms
|
A Stored Cross-Site Scripting (XSS) vulnerability was identified in the social feature of parisneo/lollms, affecting the latest version prior to 2.2.0. The vulnerability exists in the `create_post` f…
|
CWE-79
Cross-site Scripting
|
CVE-2026-1115
|
2026-04-17 04:39 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1119
|
4.8 |
MEDIUM
Network
|
-
|
-
|
Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.3.1, the Axios library is vulnerable to a specific "Gadget" attack chain that allows Prototype Pollution in any…
|
CWE-113
CWE-444
CWE-918
HTTP Response Splitting
HTTP Request Smuggling
Server-Side Request Forgery (SSRF)
|
CVE-2026-40175
|
2026-04-17 04:16 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1120
|
9.8 |
CRITICAL
Network
|
chamilo
|
chamilo_lms
|
Chamilo LMS is a learning management system. Prior to 1.11.38, a chained attack can enable otherwise-blocked PHP code from the main/install/ directory and allow an unauthenticated attacker to modify …
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2026-33698
|
2026-04-17 03:48 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
