|
1311
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in ryanjoachim mcp-rtfm 0.1.0. This vulnerability affects the function get_doc_content/read_doc/update_doc of the component MCP Interface. Such manipulation of the argu…
|
CWE-22
Path Traversal
|
CVE-2026-7728
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1312
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in pixelsock directus-mcp 1.0.0. This issue affects the function validateUrl of the file index.ts of the component MCP Interface. Performing a manipulation of the …
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-7729
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1313
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in privsim mcp-test-runner 0.2.0. Impacted is the function child_process.spawn of the file src/index.ts of the component MCP Interface. Executing a manipulation of the …
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-7730
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1314
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in code-projects BloodBank Managing System 1.0. The affected element is an unknown function of the file get_state.php. The manipulation of the argument G_ST…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7731
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1315
|
3.3 |
LOW
Local
|
-
|
-
|
A weakness has been identified in justdan96 tsMuxer up to 2.7.0. This vulnerability affects the function HevcVpsUnit::setFPS of the file /AFLplusplus/tsMuxer_prev/tsMuxer/hevc.cpp. This manipulation …
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7739
|
2026-05-5 00:17 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1316
|
3.3 |
LOW
Local
|
-
|
-
|
A security vulnerability has been detected in justdan96 tsMuxer up to 2.7.0. This issue affects the function VvcVpsUnit::setFPS of the file tsMuxer/vvc.cpp. Such manipulation of the argument track_id…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7740
|
2026-05-5 00:17 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1317
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in CodeAstro Online Classroom 1.0. Impacted is an unknown function of the file /OnlineClassroom/studentlogin. Performing a manipulation of the argument sid results in sql…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7741
|
2026-05-5 00:17 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1318
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in CodeAstro Online Classroom 1.0. The affected element is an unknown function of the file /OnlineClassroom/facultylogin. Executing a manipulation of the argument fid can lead t…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7742
|
2026-05-5 00:17 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1319
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in CodeAstro Online Classroom 1.0. The impacted element is an unknown function of the file /OnlineClassroom/studentdetails. The manipulation of the argument deleteid le…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7743
|
2026-05-5 00:17 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1320
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in CodeAstro Online Classroom 1.0. This affects an unknown function of the file /OnlineClassroom/addnewstudent. The manipulation of the argument fname results in sql injecti…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7744
|
2026-05-5 00:17 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
