|
251
|
6.5 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in liangliangyy DjangoBlog up to 2.1.0.0. This impacts an unknown function of the file blog/views.py of the component Clean Endpoint. This manipulation causes missing a…
New
|
CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function
|
CVE-2026-6579
|
2026-04-20 07:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252
|
5.6 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of…
New
|
CWE-259
CWE-798
Use of Hard-coded Password
Use of Hard-coded Credentials
|
CVE-2026-6578
|
2026-04-20 07:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an unknown function of the file owntracks/views.py of the component logtracks Endpoint. The manipulati…
New
|
CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function
|
CVE-2026-6577
|
2026-04-20 05:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in liangliangyy DjangoBlog up to 2.1.0.0. The affected element is the function CommandHandler of the file servermanager/api/commonapi.py of the component WeChat Bot Int…
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-6576
|
2026-04-20 04:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation…
|
CWE-259
CWE-798
Use of Hard-coded Password
Use of Hard-coded Credentials
|
CVE-2026-6574
|
2026-04-19 23:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app/exam/controller/exams.master.php of the component Instant Exam Creation Handler. The manipulation of t…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-6573
|
2026-04-19 22:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257
|
5.6 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileU…
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-6572
|
2026-04-19 22:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in kodcloud KodExplorer up to 4.52. Affected by this vulnerability is the function roleGroupAction of the file /app/controller/systemRole.class.php. Executing a manipul…
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-6571
|
2026-04-19 21:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259
|
2.7 |
LOW
Network
|
-
|
-
|
A security flaw has been discovered in kodcloud KodExplorer up to 4.52. Affected is the function initInstall of the file /app/controller/systemMember.class.php. Performing a manipulation of the argum…
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-6570
|
2026-04-19 21:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in kodcloud KodExplorer up to 4.52. This impacts the function fileGet of the file /app/controller/share.class.php of the component fileGet Endpoint. Such manipulation o…
|
CWE-287
Improper Authentication
|
CVE-2026-6569
|
2026-04-19 20:16 |
2026-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
