|
2261
|
7.5 |
HIGH
Network
|
open5gs
|
open5gs
|
A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is the function pcf_sess_sbi_discover_and_send of the component sm-policies Endpoint. Performing a manipulation result…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-8223
|
2026-05-14 01:10 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2262
|
8.8 |
HIGH
Network
|
wavlink
|
wl-nu516u1_firmware
|
A security flaw has been discovered in Wavlink NU516U1 M16U1_V240425. This vulnerability affects the function wzdap of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument EncrypType/…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8192
|
2026-05-14 01:10 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2263
|
8.8 |
HIGH
Network
|
wavlink
|
wl-nu516u1_firmware
|
A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This affects the function wifi_region of the file /cgi-bin/adm.cgi. Such manipulation of the argument skiplist1/skiplist2 leads to os …
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8191
|
2026-05-14 01:10 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2264
|
8.8 |
HIGH
Network
|
wavlink
|
wl-nu516u1_firmware
|
A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument ppp_username/ppp_passwd/rwa…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8190
|
2026-05-14 01:10 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2265
|
8.8 |
HIGH
Network
|
wavlink
|
wl-nu516u1_firmware
|
A vulnerability was found in Wavlink NU516U1 M16U1_V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlan_bssid/sel_Au…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8189
|
2026-05-14 01:09 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2266
|
8.8 |
HIGH
Network
|
wavlink
|
wl-nu516u1_firmware
|
A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/Encryp…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8188
|
2026-05-14 01:09 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2267
|
7.5 |
HIGH
Network
|
open5gs
|
open5gs
|
A vulnerability was detected in Open5GS up to 2.7.7. This affects the function ogs_sbi_client_send_via_scp_or_sepp in the library lib/sbi/client.c of the component NF. Performing a manipulation resul…
|
CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Read
|
CVE-2026-8186
|
2026-05-14 01:09 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2268
|
7.5 |
HIGH
Network
|
open5gs
|
open5gs
|
A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption…
|
CWE-400
CWE-404
Uncontrolled Resource Consumption
Improper Resource Shutdown or Release
|
CVE-2026-8187
|
2026-05-14 01:08 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2269
|
5.4 |
MEDIUM
Network
|
-
|
-
|
The form plugin for Grav adds the ability to create and use forms. Prior to 9.1.0, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Grav CMS Form plugin's select field template. Taxono…
|
CWE-79
Cross-site Scripting
|
CVE-2026-42842
|
2026-05-14 01:04 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2270
|
- |
|
-
|
-
|
grav-plugin-admin is the admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.10.49.5, the application fails…
|
CWE-79
Cross-site Scripting
|
CVE-2026-44737
|
2026-05-14 01:04 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
