|
1
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation…
New
|
CWE-259
CWE-798
Use of Hard-coded Password
Use of Hard-coded Credentials
|
CVE-2026-6574
|
2026-04-19 23:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app/exam/controller/exams.master.php of the component Instant Exam Creation Handler. The manipulation of t…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-6573
|
2026-04-19 22:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3
|
5.6 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileU…
New
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-6572
|
2026-04-19 22:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in kodcloud KodExplorer up to 4.52. Affected by this vulnerability is the function roleGroupAction of the file /app/controller/systemRole.class.php. Executing a manipul…
New
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-6571
|
2026-04-19 21:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5
|
2.7 |
LOW
Network
|
-
|
-
|
A security flaw has been discovered in kodcloud KodExplorer up to 4.52. Affected is the function initInstall of the file /app/controller/systemMember.class.php. Performing a manipulation of the argum…
New
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-6570
|
2026-04-19 21:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in kodcloud KodExplorer up to 4.52. This impacts the function fileGet of the file /app/controller/share.class.php of the component fileGet Endpoint. Such manipulation o…
New
|
CWE-287
Improper Authentication
|
CVE-2026-6569
|
2026-04-19 20:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
7
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in kodcloud KodExplorer up to 4.52. This affects the function share.class.php::initShareOld of the file /app/controller/share.class.php of the component Public Share Ha…
New
|
CWE-22
Path Traversal
|
CVE-2026-6568
|
2026-04-19 19:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
8
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in EMQ EMQX Enterprise up to 6.1.0. The impacted element is an unknown function of the component Session Handling. The manipulation results in improper authorization. It is …
New
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-6564
|
2026-04-19 19:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
9
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in H3C Magic B1 up to 100R004. The affected element is the function SetAPWifiorLedInfoById of the file /goform/aspForm. The manipulation of the argument param leads to …
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-6563
|
2026-04-19 18:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
10
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is the function getListByPage of the file /index/Search/index.html. Executing a manipulation of the argument keyword can lead to sql…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-6562
|
2026-04-19 18:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
