|
1411
|
9.8 |
CRITICAL
Network
|
orthanc-server
|
orthanc
|
A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation (VR) Unsigned Long (UL), instead of the expected VR Unsigned Short (US)…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-5442
|
2026-04-15 05:19 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1412
|
7.1 |
HIGH
Local
|
orthanc-server
|
orthanc
|
An out-of-bounds read vulnerability exists in the `DecodePsmctRle1` function of `DicomImageDecoder.cpp`. The `PMSCT_RLE1` decompression routine, which decodes the proprietary Philips Compression form…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-5441
|
2026-04-15 05:18 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1413
|
7.1 |
HIGH
Local
|
libexif_project
|
libexif
|
In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or information leaks. This only affects 32bit systems.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2026-40385
|
2026-04-15 05:15 |
2026-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1414
|
7.7 |
HIGH
Network
|
goshs
|
goshs
|
goshs is a SimpleHTTPServer written in Go. From 1.0.7 to before 2.0.0-beta.4, the SFTP command rename sanitizes only the source path and not the destination, so it is possible to write outside of the…
|
CWE-1314
|
CVE-2026-40188
|
2026-04-15 05:15 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1415
|
6.5 |
MEDIUM
Network
|
nearform
|
fast-jwt
|
fast-jwt provides fast JSON Web Token (JWT) implementation. From 5.0.0 to 6.2.0, a denial-of-service condition exists in fast-jwt when the allowedAud verification option is configured using a regular…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2026-35041
|
2026-04-15 05:15 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1416
|
8.2 |
HIGH
Network
|
opnsense
|
opnsense
|
OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.6, OPNsense's LDAP authentication connector passes the login username directly into an LDAP search filter without calling ldap…
|
CWE-90
LDAP Injection
|
CVE-2026-34578
|
2026-04-15 05:14 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1417
|
9.9 |
CRITICAL
Network
|
axios
|
axios
|
Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.31.0, Axios does not correctly handle hostname normalization when checking NO_PROXY rules. Requests to loopback…
|
CWE-441
CWE-918
Confused Deputy
Server-Side Request Forgery (SSRF)
|
CVE-2025-62718
|
2026-04-15 05:14 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1418
|
7.3 |
HIGH
Network
|
tandoor
|
recipes
|
Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Prior to 2.6.4, the POST /api/food/{id}/shopping/ endpoint reads amount and unit directly from req…
|
CWE-639
CWE-1284
Authorization Bypass Through User-Controlled Key
Improper Validation of Specified Quantity in Input
|
CVE-2026-35489
|
2026-04-15 05:13 |
2026-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1419
|
7.5 |
HIGH
Network
|
kagi
|
fastfeedparser
|
FastFeedParser is a high performance RSS, Atom and RDF parser. Prior to 0.5.10, when parse() fetches a URL that returns an HTML page containing a <meta http-equiv="refresh"> tag, it recursively calls…
|
CWE-674
Uncontrolled Recursion
|
CVE-2026-39376
|
2026-04-15 05:12 |
2026-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1420
|
9.1 |
CRITICAL
Network
|
jizhicms
|
jizhicms
|
Jizhicms v2.5.4 is vulnerable to Server-Side Request Forgery (SSRF) in User Evaluation, Message, and Comment modules.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2025-50228
|
2026-04-15 05:11 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
