|
731
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in ealpha072 Student-Management-System up to 01451bd7a2f58cdda07bd0b86e3967582e3ecd08. Affected by this issue is some unknown functionality of the file admin/config.php…
New
|
CWE-287
Improper Authentication
|
CVE-2026-10777
|
2026-06-5 01:32 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
732
|
3.6 |
LOW
Local
|
-
|
-
|
A vulnerability was detected in zilliztech GPTCache up to 0.1.44. Affected by this issue is the function BufferedReader.peek of the file gptcache/processor/pre.py of the component Cache Key Handler. …
New
|
CWE-327
CWE-328
Use of a Broken or Risky Cryptographic Algorithm
Use of Weak Hash
|
CVE-2026-10812
|
2026-06-5 01:32 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
733
|
3.6 |
LOW
Local
|
-
|
-
|
A flaw has been found in LMCache up to 0.4.6. This affects the function hex_hash_to_int16 of the file lmcache/integration/vllm/utils.py of the component KV Cache Handler. Executing a manipulation can…
New
|
CWE-327
CWE-328
Use of a Broken or Risky Cryptographic Algorithm
Use of Weak Hash
|
CVE-2026-10813
|
2026-06-5 01:32 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
734
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in LakshayD02 Hostel-Management-System-PHP up to f87e67c283bab6f718faf2fec6ae39a13bd7036b. This issue affects some unknown processing of the file hostel/index.php of the com…
New
|
CWE-862
CWE-863
Missing Authorization
Incorrect Authorization
|
CVE-2026-10815
|
2026-06-5 01:32 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
735
|
5.9 |
MEDIUM
Network
|
-
|
-
|
FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the IPv4 packet parser. In src/simple_packet_parser_ng.cpp, after validating that the packet contains at least sizeof(ipv4…
New
|
CWE-125
Out-of-bounds Read
|
CVE-2026-48682
|
2026-06-5 01:28 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
736
|
7.5 |
HIGH
Network
|
-
|
-
|
An integer underflow in the BGPUpdate.DecodeFromBytes function (/bgp/bgp.go) of gobgp v4.3.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted BGP UPDATE message.
New
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2026-37462
|
2026-06-5 01:28 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
737
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A Cross Site Scripting vulnerability exists in the Kimi AI v1.0 web interface's 'Preview' feature. The application fails to properly sanitize or encode HTML/JavaScript payloads generated by the AI mo…
New
|
CWE-79
Cross-site Scripting
|
CVE-2026-39107
|
2026-06-5 01:28 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
738
|
- |
|
-
|
-
|
GNCC GP5 v7.1.76 was discovered to utilize a weak hashing algorithm to protect the root password, possibly allowing attackers to obtain root credentials and privileges via a bruteforce attack.
New
|
-
|
CVE-2026-36182
|
2026-06-5 01:28 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
739
|
- |
|
-
|
-
|
bacnet_stack 1.3.1 contains an Out-of-bounds Read in bacnet_tag_number_decode which allows attackers to cause a denial of service.
New
|
-
|
CVE-2026-38570
|
2026-06-5 01:28 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
740
|
9.8 |
CRITICAL
Network
|
-
|
-
|
CrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response header values.
New
|
CWE-113
HTTP Response Splitting
|
CVE-2026-38967
|
2026-06-5 01:26 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
