|
1671
|
4.9 |
MEDIUM
Network
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain a stack overflow in the username parameter of the R7WebsSecurityHandler function. This vulnerabili…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36778
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1672
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain a stack overflow in the param_1 parameter of the formSetCfm function. This vulnerability allows at…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36777
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1673
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain a stack overflow in the Go parameter of the ask_to_reboot function. This vulnerability allows atta…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36773
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1674
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain a stack overflow in the wl_radio parameter of the formwrlSSIDget function. This vulnerability allo…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36772
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1675
|
5.3 |
MEDIUM
Network
|
-
|
-
|
An arbitrary file deletion vulnerability in the /api/delete-temp-license/{file} endpoint of bookcars v8.3 allows unauthenticated attackers to delete arbitrary files via supplying directory traversal …
|
CWE-22
Path Traversal
|
CVE-2026-36726
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1676
|
8.8 |
HIGH
Network
|
-
|
-
|
An unrestricted file rename vulnerability in the /api/create-user component of bookcars v8.3 allows authenticated attackers to leverage directory traversal sequences to move arbitrary files from temp…
|
CWE-22
Path Traversal
|
CVE-2026-36723
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1677
|
5.4 |
MEDIUM
Network
|
-
|
-
|
An authenticated arbitrary file upload vulnerability in the /api/create-car-image component of bookcars v8.3 allows attackers to execute arbitrary code via uploading a crafted file.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-36722
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1678
|
4.7 |
MEDIUM
Network
|
-
|
-
|
In ScreenConnect™ versions prior to 26.2, input
validation within the Host Pass creation functionality could allow an
authenticated user with Host Pass creation privileges the ability to specify a
to…
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2026-11596
|
2026-06-11 03:16 |
2026-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1679
|
2.5 |
LOW
Local
|
gradio_project
|
gradio
|
A security flaw has been discovered in gradio-app gradio 6.14.0. This affects the function save_audio_to_cache of the component Audio Cache Key Handler. Performing a manipulation results in use of we…
|
CWE-327
CWE-328
Use of a Broken or Risky Cryptographic Algorithm
Use of Weak Hash
|
CVE-2026-10783
|
2026-06-11 03:06 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1680
|
7.0 |
HIGH
Local
|
microsoft
|
windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
|
Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally.
|
CWE-426
Untrusted Search Path
|
CVE-2026-47648
|
2026-06-11 02:54 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
