|
3361
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in OFCMS up to 1.1.3. The impacted element is the function Query of the file ofcms-admin\src\main\java\com\ofsoft\cms\admin\controller\ComnController.java of the c…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10193
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3362
|
3.3 |
LOW
Local
|
-
|
-
|
A vulnerability was detected in Assimp up to 6.0.4. Affected is the function glTF2Importer::ImportEmbeddedTextures in the library code/AssetLib/glTF2/glTF2Importer.cpp of the component TF File Handle…
|
CWE-404
CWE-476
Improper Resource Shutdown or Release
NULL Pointer Dereference
|
CVE-2026-10197
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3363
|
3.3 |
LOW
Local
|
-
|
-
|
A flaw has been found in Assimp up to 6.0.4. Affected by this vulnerability is the function Assimp::glTFImporter::ImportMeshes of the file glTFImporter.cpp of the component glTFImporter. This manipul…
|
CWE-404
CWE-476
Improper Resource Shutdown or Release
NULL Pointer Dereference
|
CVE-2026-10198
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3364
|
3.3 |
LOW
Local
|
-
|
-
|
A vulnerability has been found in Assimp up to 6.0.4. Affected by this issue is the function glTF2::LazyDict in the library glTF2Asset.h. Such manipulation of the argument operator[] leads to null po…
|
CWE-404
CWE-476
Improper Resource Shutdown or Release
NULL Pointer Dereference
|
CVE-2026-10199
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3365
|
5.3 |
MEDIUM
Local
|
-
|
-
|
A vulnerability was found in Assimp up to 6.0.4. This affects the function glTFCommon::CopyValue in the library glTFCommon.h of the component 4x4 Matrix Parser. Performing a manipulation results in h…
|
CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error')
Heap-based Buffer Overflow
|
CVE-2026-10200
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3366
|
3.3 |
LOW
Local
|
-
|
-
|
A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a ma…
|
CWE-369
CWE-404
Divide By Zero
Improper Resource Shutdown or Release
|
CVE-2026-10201
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3367
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in OFCMS 1.1.3. This issue affects the function Query of the file \ofcms-admin\src\main\java\com\ofsoft\cms\admin\controller\system\SystemDictController.java of the com…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10202
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3368
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in OFCMS 1.1.3. Impacted is the function Query of the file \ofcms-admin\src\main\java\com\ofsoft\cms\admin\controller\system\SystemParamController.java of the comp…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10203
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3369
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in OFCMS 1.1.3. The affected element is the function Query of the file \ofcms-admin\src\main\java\com\ofsoft\cms\admin\controller\system\SysUserController.java of the c…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10204
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3370
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in Metasoft 美特软件 MetaCRM 6.4.0. The impacted element is an unknown function of the file develop/systparam/softlogo/upload.jsp. Such manipulation leads to un…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-10205
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
