|
161
|
4.3 |
MEDIUM
Network
|
-
|
-
|
JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 151.0.3.
New
|
CWE-843
Type Confusion
|
CVE-2026-10702
|
2026-06-4 01:16 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
162
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in wonderwhy-er DesktopCommanderMCP 0.2.37. This affects the function readFileFromUrl of the file src/tools/filesystem.ts of the component read_file. Such manipulation …
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-10690
|
2026-06-4 01:16 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
163
|
7.4 |
HIGH
Network
|
-
|
-
|
SIP signaling stack in Verizon IMS (unspecified version) implements SIP signaling without IPsec integrity protection (missing Security-Client/Security-Server headers and ESP traffic), which allows an…
New
|
-
|
CVE-2026-10629
|
2026-06-4 01:16 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
164
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in DedeCMS 5.7.88. The impacted element is the function dede_htmlspecialchars of the file /plus/flink.php. The manipulation of the argument msg leads to sql injection. …
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10607
|
2026-06-4 01:16 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
165
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in php-censor up to 2.1.6. This affects an unknown function of the file src/Model/Build/GitBuild.php of the component Webhook Endpoint. Performing a manipulation of the argu…
New
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-10273
|
2026-06-4 01:16 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
166
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1. The affected element is an unknown function of the file add_user_check…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10227
|
2026-06-4 01:16 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
167
|
7.8 |
HIGH
Local
|
google
|
android
|
In multiple locations, there is a possible tapjacking due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti…
New
|
CWE-269
Improper Privilege Management
|
CVE-2026-0009
|
2026-06-4 01:16 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
168
|
- |
|
-
|
-
|
backpack/crud provides Create, Read, Update & Delete (CRUD) functions for Backpack, a collection of Laravel packages that help users build custom administration panels. Versions prior to 5.0.13, 4.1.…
New
|
CWE-79
Cross-site Scripting
|
CVE-2022-31114
|
2026-06-4 01:16 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
169
|
8.6 |
HIGH
Network
|
-
|
-
|
Dräger Infinity Acute Care System and Standalone Infinity M540 patient monitors running software versions VG4.1.1, VG4.0.3, and lower contain network message handling vulnerabilities that allow netwo…
New
|
CWE-924
Improper Enforcement of Message Integrity During Transmission in a Communication Channel
|
CVE-2019-25719
|
2026-06-4 01:16 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
170
|
5.5 |
MEDIUM
Local
|
opentelemetry
|
ebpf_instrumentation
|
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI's replacement ELF parser trusts section offsets, counts, and string o…
New
|
CWE-20
CWE-248
Improper Input Validation
Uncaught Exception
|
CVE-2026-45676
|
2026-06-4 01:08 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
