|
2591
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in lemonldap-ng up to 2.23.0. Impacted is an unknown function in the library lemonldap-ng-portal/lib/Lemonldap/NG/Portal/CDC.pm of the component SAML Common Domain Cookie…
|
CWE-601
Open Redirect
|
CVE-2026-12804
|
2026-06-23 03:24 |
2026-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2592
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in Edimax BR-6478AC V2 1.23. This affects the function setWAN of the file /goform/setWAN of the component POST Request Handler. The manipulation of the argument pppUserName/…
|
CWE-74 CWE-77
Injection Command Injection
|
CVE-2026-12807
|
2026-06-23 03:24 |
2026-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2593
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Edimax BR-6478AC V2 1.23. This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler. This manipulation of the argument inte…
|
CWE-74 CWE-77
Injection Command Injection
|
CVE-2026-12808
|
2026-06-23 03:24 |
2026-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2594
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in Edimax BR-6478AC V2 1.23. Affected is the function wiz_5in1_redirect of the file /goform/wiz_5in1_redirect of the component POST Request Handler. Such manipulation o…
|
CWE-74 CWE-77
Injection Command Injection
|
CVE-2026-12809
|
2026-06-23 03:24 |
2026-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2595
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in Edimax BR-6478AC V2 1.23. Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulat…
|
CWE-74 CWE-77
Injection Command Injection
|
CVE-2026-12810
|
2026-06-23 03:24 |
2026-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2596
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in activepieces up to 0.83.0. This vulnerability affects the function handleUrlFile in the library packages/server/engine/src/lib/variables/processors/file.ts of the comp…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-12813
|
2026-06-23 03:24 |
2026-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2597
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in Comfast CF-WR631AX V3 up to 2.7.0.8. This issue affects the function system of the file /cgi-bin/mbox-config?section=ping_config of the component API Endpoint. This manipulat…
|
CWE-77 CWE-78
Command Injection OS Command
|
CVE-2026-12814
|
2026-06-23 03:24 |
2026-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2598
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in FlowiseAI Flowise up to 3.1.2. The impacted element is an unknown function of the file packages/components/nodes/documentloaders/S3/S3.ts of the component S3 Documen…
|
CWE-22
Path Traversal
|
CVE-2026-12821
|
2026-06-23 03:24 |
2026-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2599
|
8.1 |
HIGH
Network
|
-
|
-
|
PhpWeasyPrint is a PHP library allowing PDF generation from a URL or an HTML page. Prior to version 2.6.0, `pontedilana/php-weasyprint` guarded the output filename against the `phar://` stream wrappe…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-49286
|
2026-06-23 03:20 |
2026-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2600
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The Bogo plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.9.1 via the bogo_rest_create_post_translation. This makes it possible for authent…
|
CWE-862
Missing Authorization
|
CVE-2026-9013
|
2026-06-23 03:16 |
2026-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|