|
2811
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. This affects the function which of the file /src/application/skills-loader.ts of the component Ski…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-9453
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2812
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in Edimax EW-7438RPn 1.31. Affected by this vulnerability is the function formWpsProxyEnable of the file /goform/formWpsProxyEnable. The manipulation of the argument subm…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-9462
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2813
|
8.8 |
HIGH
Network
|
-
|
-
|
A flaw has been found in Edimax EW-7438RPn 1.31. Affected by this issue is the function formLicence of the file /goform/formLicence. This manipulation of the argument submit-url causes stack-based bu…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-9463
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2814
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in YunaiV yudao-cloud 2026.03. This affects the function IotDataSinkHttpConfig of the file /admin-api/iot/data-sink/create of the component Admin API Endpoint. Such man…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-9464
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2815
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in Tiandy Easy7 Integrated Management Platform 7.17.0. This vulnerability affects unknown code of the file /Easy7/apps/WebService/GetDBDataEx.jsp. Performing a manipulation …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9465
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2816
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Tiandy Easy7 Integrated Management Platform 7.17.0. This issue affects some unknown processing of the file /rest/user/updateUserPassword of the component API Endpoin…
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2026-9466
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2817
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in debugmcp mcp-debugger up to 0.20.0. Impacted is the function handleGetSourceContext of the file src/server.ts. The manipulation leads to path traversal. The attack i…
|
CWE-22
Path Traversal
|
CVE-2026-9467
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2818
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in dazeb cline-mcp-memory-bank up to 55c81b9cf6c16700983c84dc4cdea3cafa19a75f. The affected element is the function handleInitializeMemoryBank of the file src/inde…
|
CWE-22
Path Traversal
|
CVE-2026-9468
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2819
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. The impacted element is an unknown function of the file /success.php. This manipul…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9469
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2820
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in c-rick jimeng-mcp 1.10.0. Affected by this vulnerability is the function getFileContent/uploadCoverFile/generateImage/generateVideo of the file src/api.ts. The manip…
|
CWE-22
Path Traversal
|
CVE-2026-9473
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
