|
4141
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in BichitroGan ISP Billing Software 2025.3.20. Impacted is an unknown function of the file /?_route=settings/users-view/ of the component Endpoint. The manipulation of the a…
|
CWE-99
Resource Injection
|
CVE-2026-5031
|
2026-04-25 01:36 |
2026-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4142
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Se encontró una vulnerabilidad en BichitroGan ISP Billing Software 2025.3.20. Afecta a una función desconocida del archivo /?_route=settings/users-view/ del componente Endpoint. La manipulación del a…
|
CWE-99
Resource Injection
|
CVE-2026-5031
|
2026-04-25 01:36 |
2026-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4143
|
3.3 |
LOW
Local
|
-
|
-
|
A vulnerability was determined in mxml up to 4.0.4. This issue affects the function index_sort of the file mxml-index.c of the component mxmlIndexNew. Executing a manipulation of the argument tempr c…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-5037
|
2026-04-25 01:36 |
2026-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4144
|
3.3 |
LOW
Local
|
-
|
-
|
Se determinó una vulnerabilidad en mxml hasta la versión 4.0.4. Este problema afecta a la función index_sort del archivo mxml-index.c del componente mxmlIndexNew. La ejecución de una manipulación del…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-5037
|
2026-04-25 01:36 |
2026-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4145
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in code-projects Chamber of Commerce Membership Management System 1.0. Impacted is the function fwrite of the file admin/pageMail.php. The manipulation of the argument …
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-5041
|
2026-04-25 01:36 |
2026-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4146
|
4.7 |
MEDIUM
Network
|
-
|
-
|
Una vulnerabilidad fue identificada en el Sistema de Gestión de Membresías de la Cámara de Comercio de code-projects 1.0. Afectada es la función fwrite del archivo admin/pageMail.PHP. La manipulación…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-5041
|
2026-04-25 01:36 |
2026-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4147
|
7.5 |
HIGH
Network
|
-
|
-
|
The Download Monitor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.7 via the executePayment() function due to missing validation on …
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-3124
|
2026-04-25 01:36 |
2026-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4148
|
7.5 |
HIGH
Network
|
-
|
-
|
El plugin Download Monitor para WordPress es vulnerable a Referencia Directa Insegura a Objeto en todas las versiones hasta la 5.1.7, inclusive, a través de la función executePayment() debido a la fa…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-3124
|
2026-04-25 01:36 |
2026-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4149
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
sched/deadline: Fix missing ENQUEUE_REPLENISH during PI de-boosting
Running stress-ng --schedpolicy 0 on an RT kernel on a big ma…
|
NVD-CWE-noinfo
|
CVE-2026-23371
|
2026-04-25 01:36 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4150
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
sched/deadline: Solucionar la falta de ENQUEUE_REPLENISH durante la des-potenciación PI
Ejecutar stress-ng --schedpolicy 0 en un…
|
NVD-CWE-noinfo
|
CVE-2026-23371
|
2026-04-25 01:36 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
