|
1621
|
7.8 |
HIGH
Local
|
-
|
-
|
An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuffersWithFormat. A client that requests multiple DRI2BufferBackLeft attachments and one DRI2BufferFro…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-50264
|
2026-06-5 22:27 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1622
|
3.3 |
LOW
Local
|
-
|
-
|
A vulnerability was found in bytedance InfiniStore up to 0.2.33. The impacted element is the function purge_kv_map in the library /src/infinistore.h of the component KV Map Handler. Performing a mani…
|
CWE-404
CWE-407
Improper Resource Shutdown or Release
Inefficient Algorithmic Complexity
|
CVE-2026-11312
|
2026-06-5 22:27 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1623
|
3.6 |
LOW
Local
|
-
|
-
|
A vulnerability has been found in onnx onnx-mlir up to 0.5.0.0. Affected by this issue is the function generate_hash_key of the file src/Runtime/python/torch_onnxmlir/src/torch_onnxmlir/backend.py of…
|
CWE-327
CWE-328
Use of a Broken or Risky Cryptographic Algorithm
Use of Weak Hash
|
CVE-2026-11329
|
2026-06-5 22:26 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1624
|
7.2 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in Shibby Tomato 1.28.0000. This vulnerability affects the function start_6rd_tunnel of the file /sbin/rc of the component Web UI. Such manipulation of the argument ipv…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-10871
|
2026-06-5 22:26 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1625
|
7.2 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in Shibby Tomato 1.28.0000. This issue affects the function start_vpnserver of the file /sbin/rc of the component Web UI. Performing a manipulation results in os command inj…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-10872
|
2026-06-5 22:26 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1626
|
7.2 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in Shibby Tomato 1.28.0000. Impacted is the function rstats_path of the file /bin/rstats of the component Web UI. Executing a manipulation can lead to os command inject…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-10873
|
2026-06-5 22:26 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1627
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in projectworlds Online Art Gallery Shop Project 1.0. The affected element is an unknown function of the file /admin/adminHome.php. The manipulation of the argument soc…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10874
|
2026-06-5 22:26 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1628
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in projectworlds Online Art Gallery Shop Project 1.0. The impacted element is an unknown function of the file /admin/adminHome.ph. The manipulation of the argument…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10875
|
2026-06-5 22:26 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1629
|
7.2 |
HIGH
Network
|
-
|
-
|
The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 6.1.3 via the `sa…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-10586
|
2026-06-5 22:26 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1630
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in SourceCodester Ship Ferry Ticket Reservation System 1.0. This affects an unknown function of the file /admin/. This manipulation of the argument page causes improper…
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-10876
|
2026-06-5 22:26 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
