|
2041
|
4.6 |
MEDIUM
Network
|
-
|
-
|
RT is an open source, enterprise-grade issue and ticket tracking system. Versions prior to 5.0.10 and 6.0.0 through 6.0.2 contain a spreadsheet (CSV/formula) injection vulnerability. User-controlled …
|
CWE-1236
Improper Neutralization of Formula Elements in a CSV File
|
CVE-2026-41073
|
2026-05-27 05:03 |
2026-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2042
|
8.1 |
HIGH
Network
|
-
|
-
|
RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.9 and prior in addition to 6.0.0 through 6.0.2 contain an authentication bypass vulnerability in RT installations…
|
CWE-287
Improper Authentication
|
CVE-2026-41076
|
2026-05-27 05:03 |
2026-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2043
|
- |
|
-
|
-
|
OutSystems Lifetime is vulnerable to Authorization Bypass Through User-Controlled Key vulnerability in ApplicationID parameter. Any authenticated user, can read the Change Log containing actions perf…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-40127
|
2026-05-27 05:00 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2044
|
- |
|
-
|
-
|
Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An unauthenticated attacker can send GET request with arbitrary file path and read corresponding files located on the serv…
|
CWE-22
Path Traversal
|
CVE-2026-7766
|
2026-05-27 04:59 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2045
|
- |
|
-
|
-
|
Szafir SDK returns a success status code from the cryptographic digital signature verification process (i.e. /VerifyingTaskItem/Signature/VerificationResult/Result/@code == 0, "Positively verified") …
|
CWE-393
CWE-637
Return of Wrong Status Code
|
CVE-2026-9058
|
2026-05-27 04:59 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2046
|
8.8 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in Tenda F456 1.0.0.5. This affects the function frmL7ImForm of the file /goform/L7Im. The manipulation of the argument page leads to buffer overflow. The a…
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-9389
|
2026-05-27 04:57 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2047
|
3.1 |
LOW
Adjacent
|
-
|
-
|
A vulnerability was determined in Besen BS20 EV Charging Station up to 20260426. This impacts an unknown function of the component Bluetooth Low Energy Handler. Executing a manipulation can lead to w…
|
CWE-521
Weak Password Requirements
|
CVE-2026-9394
|
2026-05-27 04:57 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2048
|
3.5 |
LOW
Adjacent
|
-
|
-
|
A vulnerability was identified in Besen BS20 EV Charging Station up to 20260426. Affected is an unknown function of the component BLE/UDP. The manipulation leads to insufficiently protected credentia…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2026-9395
|
2026-05-27 04:57 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2049
|
3.7 |
LOW
Network
|
-
|
-
|
A security flaw has been discovered in Besen BS20 EV Charging Station up to 20260426. Affected by this vulnerability is an unknown functionality of the component Firmware Version Check. The manipulat…
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2026-9396
|
2026-05-27 04:57 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2050
|
8.1 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in Besen BS20 EV Charging Station up to 20260426. Affected by this issue is some unknown functionality of the component OTA Update Installation Handler. This manipulati…
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-9397
|
2026-05-27 04:57 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
