|
361
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in linlinjava litemall up to 1.8.0. Affected is an unknown function of the component Admin Endpoint. Executing a manipulation can lead to sql injection. The attack can …
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8772
|
2026-05-18 09:16 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
362
|
7.3 |
HIGH
Network
|
-
|
-
|
A security flaw has been discovered in linlinjava litemall up to 1.8.0. This impacts the function list of the file litemall-wx-api/src/main/java/org/linlinjava/litemall/wx/web/WxGoodsController.java …
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8771
|
2026-05-18 09:16 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
363
|
3.3 |
LOW
Local
|
-
|
-
|
A vulnerability was identified in continuedev continue up to 1.2.22. This affects the function lsTool of the file core/tools/implementations/lsTool.ts of the component JSON-RPC Server. Such manipulat…
New
|
CWE-22
Path Traversal
|
CVE-2026-8770
|
2026-05-18 09:16 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in vercel ai up to 3.0.97. The impacted element is the function createJsonResponseHandler/createJsonErrorResponseHandler of the file packages/provider-utils/src/respons…
New
|
CWE-400
CWE-404
Uncontrolled Resource Consumption
Improper Resource Shutdown or Release
|
CVE-2026-8769
|
2026-05-18 08:17 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
365
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in vercel ai up to 3.0.97. The affected element is the function validateDownloadUrl of the file packages/provider-utils/src/download-blob.ts of the component provider-utils.…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-8768
|
2026-05-18 08:17 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
366
|
5.0 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in vercel ai up to 3.0.97. Impacted is the function run of the file .github/workflows/prettier-on-automerge.yml of the component PR Branch Name Interpolation. The manip…
New
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8767
|
2026-05-18 08:17 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
367
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in Kilo-Org kilocode up to 7.0.47. This issue affects the function Load of the file packages/opencode/src/config/config.ts of the component Environment Variable Handler. Executi…
New
|
CWE-200
CWE-284
Information Exposure
Improper Access Control
|
CVE-2026-8766
|
2026-05-18 08:17 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
368
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in Kilo-Org kilocode up to 7.0.47. This vulnerability affects the function Bun.file of the file packages/opencode/src/kilocode/review/worktree-diff.ts of the component Fi…
New
|
CWE-22
Path Traversal
|
CVE-2026-8765
|
2026-05-18 08:17 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
369
|
7.2 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in H3C Magic B3 up to 100R002. This affects the function UpdateWanParams of the file /goform/aspForm. Such manipulation of the argument param leads to buffe…
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-8764
|
2026-05-18 07:16 |
2026-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
370
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present
The DATA-packet handler in rxrpc_input_call_event() and th…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2026-43500
|
2026-05-18 01:16 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
