|
2541
|
- |
|
-
|
-
|
A stack‑based
buffer overflow vulnerability exists in Tapo C520WS v2 in the ONVIF CreateUsers service, where
the device fails to properly validate the number of XML user nodes during
request processi…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-6239
|
2026-06-9 00:01 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2542
|
- |
|
-
|
-
|
A stack-based buffer overflow vulnerability exists in Tapo C520WS v2 in the ONVIF DeleteUsers service, due to insufficient boundary checks when handling multiple user deletion parameters. An authenti…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-6240
|
2026-06-9 00:01 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2543
|
- |
|
-
|
-
|
An authenticated format string vulnerability is present in the ONVIF AddScopes in Tapo C520WS v2, where user-controlled input is improperly passed to formatting functions without adequate sanitizatio…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2026-6241
|
2026-06-9 00:01 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2544
|
- |
|
-
|
-
|
An authenticated format string vulnerability exists in the ONVIF Subscribe service in Tapo C520WS v2 due to improper handling of externally supplied parameters within formatting functions. An attacke…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2026-6242
|
2026-06-9 00:01 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2545
|
- |
|
-
|
-
|
On Tapo
C520WS v2, restricted accounts (for example, hub users) are intended to execute
only a limited set of low‑sensitivity operations. Due to a logic flaw in the
device’s API authorization mechani…
|
CWE-287
Improper Authentication
|
CVE-2026-34123
|
2026-06-9 00:01 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2546
|
- |
|
-
|
-
|
This vulnerability exists in Bagisto due to improper validation of user-supplied input in the ImageCacheController component. An unauthenticated remote attacker could exploit this vulnerability by se…
|
CWE-22
Path Traversal
|
CVE-2026-9506
|
2026-06-9 00:01 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2547
|
- |
|
-
|
-
|
A path traversal vulnerability exists in the Altium Enterprise Server Collaboration Service due to improper handling of user-supplied filenames in the MCAD and Simulation file download flows. A regul…
|
CWE-22
CWE-269
Path Traversal
Improper Privilege Management
|
CVE-2026-11423
|
2026-06-9 00:00 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2548
|
- |
|
-
|
-
|
A server-side request forgery (SSRF) vulnerability exists in a GraphQL service component shared by Altium Enterprise Server and Altium 365. An authenticated user can submit a request whose input is t…
|
CWE-200
CWE-918
Information Exposure
Server-Side Request Forgery (SSRF)
|
CVE-2026-11424
|
2026-06-9 00:00 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2549
|
- |
|
-
|
-
|
A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypas…
|
CWE-22
CWE-200
Path Traversal
Information Exposure
|
CVE-2026-11431
|
2026-06-9 00:00 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2550
|
8.1 |
HIGH
Network
|
termix
|
termix
|
Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The `POST /users/totp/disable` and `POST /users/totp/backup-codes` endpoints in Termix pr…
|
CWE-308
Use of Single-factor Authentication
|
CVE-2026-45749
|
2026-06-8 23:59 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
