VYPR

CVEs

100,082 total · page 65 of 2,002

  • CVE-2026-6347HigMay 18, 2026
    risk 0.42cvss 7.6epss 0.00

    Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to sanitize sensitive configuration fields in the Mattermost Calls plugin which allows an attacker with access to a support packet to obtain TURN server credentials via the plaintext values present…

  • CVE-2026-6346HigMay 18, 2026
    risk 0.50cvss 8.7epss 0.00

    Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to sanitize sensitive configuration fields before including them in support packet generation, which allows a Mattermost System Admin or any party with access to a support packet to obtain sensitive…

  • CVE-2026-8788HigMay 18, 2026
    risk 0.40cvss 7.3epss 0.00

    Net::Statsd::Lite versions through 0.10.0 for Perl allowed metric injections. The values from the set_add method were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note that version 0.9.0 fixed a…

  • CVE-2026-6495HigMay 18, 2026
    risk 0.46cvss 7.1epss 0.00

    The Ajax Load More WordPress plugin before 7.8.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

  • CVE-2026-6381HigMay 18, 2026
    risk 0.49cvss 7.5epss 0.00

    The WP Maps WordPress plugin before 4.9.3 does not properly sanitize a parameter before using it in a file path, allowing authenticated users to perform Local File Inclusion attacks.

  • CVE-2026-6379HigMay 18, 2026
    risk 0.56cvss 8.6epss 0.00

    The WP Photo Album Plus WordPress plugin before 9.1.11.001 does not properly sanitize and escape a parameter before using it in a SQL query, allowing unauthenticated users to perform SQL injection attacks.

  • CVE-2026-3220HigMay 18, 2026
    risk 0.57cvss 8.8epss 0.00

    The Autoptimize WordPress plugin before 3.1.15, Clearfy Cache WordPress plugin before 2.4.2, Speed Optimizer WordPress plugin before 7.7.9 are vulnerable to unauthenticated Stored Cross-Site Scripting (XSS) due to a predictable replacement hash used during the HTML…

  • CVE-2026-8785HigMay 18, 2026
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in projectworlds hospital-management-system-in-php 1.0. Affected by this vulnerability is the function getAllPatientDetail of the file update_info.php of the component GET Parameter Handler. Executing a manipulation of the argument appointment_no can lead…

  • CVE-2026-8776HigMay 18, 2026
    risk 0.57cvss 8.8epss 0.00

    A vulnerability has been found in Edimax BR-6428NS 1.10. This vulnerability affects the function formPPTPSetup of the file /goform/formPPTPSetup of the component POST Request Handler. Such manipulation of the argument pptpUserName leads to buffer overflow. It is possible to…

  • CVE-2026-8775HigMay 18, 2026
    risk 0.57cvss 8.8epss 0.01

    A flaw has been found in Edimax BR-6428NS 1.10. This affects the function formL2TPSetup of the file /goform/formL2TPSetup of the component POST Request Handler. This manipulation of the argument L2TPUserName causes buffer overflow. It is possible to initiate the attack remotely.…

  • CVE-2026-8771HigMay 18, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in linlinjava litemall up to 1.8.0. This impacts the function list of the file litemall-wx-api/src/main/java/org/linlinjava/litemall/wx/web/WxGoodsController.java of the component Front-end WeChat API. Performing a manipulation results in sql…

  • CVE-2026-8768HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in vercel ai up to 3.0.97. The affected element is the function validateDownloadUrl of the file packages/provider-utils/src/download-blob.ts of the component provider-utils. The manipulation results in server-side request forgery. The attack can be…

  • CVE-2026-8764HigMay 17, 2026
    risk 0.47cvss 7.2epss 0.00

    A security vulnerability has been detected in H3C Magic B3 up to 100R002. This affects the function UpdateWanParams of the file /goform/aspForm. Such manipulation of the argument param leads to buffer overflow. The attack may be performed from remote. The exploit has been…

  • CVE-2026-46720HigMay 17, 2026
    risk 0.46cvss 8.2epss 0.00

    Net::Statsd::Tiny versions before 0.3.8 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics.

  • CVE-2026-8759HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in xiandafu beetl up to 3.20.2. Affected is an unknown function of the file beetl-classic-integration/beetl-spring-classic/src/main/java/org/beetl/ext/spring/SpELFunction.java of the component SpELFunction. The manipulation leads to improper…

  • CVE-2026-8758HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in Metasoft 美特软件 MetaCRM up to 6.4.0 Beta06. This impacts an unknown function of the file /common/jsp/upload3.jsp. Executing a manipulation of the argument File can lead to unrestricted upload. The attack may be launched remotely. The…

  • CVE-2026-8757HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.01

    A vulnerability was found in adenhq hive up to 0.11.0. This affects the function _read_events_tail of the file core/framework/server/routes_sessions.py of the component Delete Request Handler. Performing a manipulation results in path traversal. The attack may be initiated…

  • CVE-2026-8756HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.01

    A vulnerability has been found in fishaudio Bert-VITS2 up to 8f7fbd8c4770965225d258db548da27dc8dd934c. The impacted element is the function generate_config of the file webui_preprocess.py of the component Gradio Interface. Such manipulation of the argument data_dir leads to path…

  • CVE-2026-8755HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.01

    A flaw has been found in fishaudio Bert-VITS2 up to 8f7fbd8c4770965225d258db548da27dc8dd934c. The affected element is the function _get_all_models of the file hiyoriUI.py of the component Model Handler. This manipulation causes path traversal. The attack can be initiated…

  • CVE-2018-25339HigMay 17, 2026
    risk 0.53cvss 8.2epss 0.00

    Zechat 1.5 contains a SQL injection vulnerability in the v parameter that allows unauthenticated attackers to extract database information using time-based blind techniques. Attackers can exploit the v parameter with sleep-based blind injection to confirm vulnerability and…

  • CVE-2018-25338HigMay 17, 2026
    risk 0.53cvss 8.2epss 0.00

    Zechat 1.5 contains a SQL injection vulnerability in the hashtag parameter that allows unauthenticated attackers to extract database information using union-based techniques. Attackers can exploit the hashtag parameter with union-based payloads to retrieve table and column names.

  • CVE-2018-25333HigMay 17, 2026
    risk 0.53cvss 8.2epss 0.00

    Nordex N149/4.0-4.5 Wind Turbine Web Server 4.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the login parameter in login.php. Attackers can submit crafted POST requests with…

  • CVE-2018-25330HigMay 17, 2026
    risk 0.53cvss 8.2epss 0.00

    Joomla! extension EkRishta 2.10 contains persistent cross-site scripting and SQL injection vulnerabilities that allow attackers to inject malicious code through profile fields and POST parameters. Attackers can inject script payloads in profile information fields like Address…

  • CVE-2018-25329HigMay 17, 2026
    risk 0.49cvss 7.5epss 0.00

    WordPress Plugin WP with Spritz 1.0 contains a remote file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by injecting file paths into the url parameter. Attackers can send GET requests to wp.spritz.content.filter.php with malicious url…

  • CVE-2018-25328HigMay 17, 2026
    risk 0.55cvss 8.4epss 0.00

    VX Search 10.6.18 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying an oversized string in the directory field. Attackers can craft a malicious input file containing 271 bytes of junk data followed by a return…

  • CVE-2018-25326HigMay 17, 2026
    risk 0.49cvss 7.5epss 0.01

    Google Drive for WordPress 2.2 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by injecting directory traversal sequences in the file_name parameter. Attackers can send POST requests to gdrive-ajaxs.php with the ajaxstype…

  • CVE-2018-25325HigMay 17, 2026
    risk 0.49cvss 7.5epss 0.01

    Woocommerce CSV Importer 3.3.6 contains a path traversal vulnerability that allows any registered user to delete arbitrary files by submitting unescaped filenames through the delete_export_file AJAX action. Attackers can craft POST requests with directory traversal sequences in…

  • CVE-2018-25323HigMay 17, 2026
    risk 0.55cvss 8.4epss 0.00

    Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a structured exception handler buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload. Attackers can craft a text file with a specially crafted buffer containing…

  • CVE-2018-25322HigMay 17, 2026
    risk 0.55cvss 8.4epss 0.00

    Allok Fast AVI MPEG Splitter 1.2 contains a stack based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious license name string. Attackers can craft a payload with 780 bytes of junk data followed by structured shellcode…

  • CVE-2018-25319HigMay 17, 2026
    risk 0.46cvss 7.1epss 0.00

    Redaxo CMS Addon MyEvents 2.2.1 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the myevents_id parameter. Attackers can send GET requests to the event_add.php page with malicious…

  • CVE-2026-8751HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried…

  • CVE-2026-8734HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in Oinone Pamirs up to 7.2.0. Affected by this issue is the function RSQLToSQLNodeConnector.makeVariable of the component queryListByWrapper Interface. This manipulation causes sql injection. The attack can be initiated remotely. The exploit has…

  • CVE-2026-8719HigMay 17, 2026
    risk 0.50cvss 8.8epss 0.00

    The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to Privilege Escalation in version 3.4.9. This is due to missing WordPress capability enforcement in the MCP OAuth bearer-token authorization path, where any valid OAuth token…

  • CVE-2026-8725HigMay 17, 2026
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in CoreWorxLab CAAL up to 1.6.0. The affected element is an unknown function of the file src/caal/webhooks.py of the component test-hass Endpoint. This manipulation causes server-side request forgery. Remote exploitation of the attack is possible.…

  • CVE-2026-46728HigMay 16, 2026
    risk 0.46cvss 8.2epss 0.00

    Das U-Boot before 2026.04 allows FIT (Flat Image Tree) signature verification bypass because hashed-nodes is omitted from a hash.

  • CVE-2021-47980HigMay 16, 2026
    risk 0.46cvss 7.1epss 0.00

    Fuel CMS 1.4.13 contains a blind SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'col' parameter in the Activity Log interface. Attackers can send requests to the logs endpoint with malicious SQL…

  • CVE-2021-47979HigMay 16, 2026
    risk 0.57cvss 8.8epss 0.00

    WordPress Plugin Backup and Restore 1.0.3 contains an arbitrary file deletion vulnerability that allows authenticated attackers to delete files by manipulating parameters in AJAX requests. Attackers can send POST requests to admin-ajax.php with crafted file_name and folder_name…

  • CVE-2021-47977HigMay 16, 2026
    risk 0.49cvss 7.5epss 0.01

    WordPress Plugin Anti-Malware Security and Bruteforce Firewall 4.20.59 contains a directory traversal vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the file parameter. Attackers can send requests to the duplicator_download action via…

  • CVE-2021-47976HigMay 16, 2026
    risk 0.57cvss 8.8epss 0.00

    TextPattern CMS 4.9.0-dev contains a remote code execution vulnerability that allows authenticated attackers to upload arbitrary PHP files by exploiting the plugin upload functionality. Attackers can authenticate, retrieve a CSRF token from the plugin event page, and upload…

  • CVE-2021-47975HigMay 16, 2026
    risk 0.47cvss 7.2epss 0.00

    WP Learn Manager 1.1.2 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the `fieldtitle` parameter. Attackers can submit POST requests to the jslm_fieldordering page with XSS payloads in the fieldtitle…

  • CVE-2021-47974HigMay 16, 2026
    risk 0.51cvss 7.8epss 0.00

    VX Search 13.5.28 contains an unquoted service path vulnerability in both VX Search Server and VX Search Enterprise services that allows local attackers to escalate privileges. Attackers can place malicious executables in unquoted path directories like C:\Program Files\VX Search…

  • CVE-2021-47973HigMay 16, 2026
    risk 0.49cvss 7.5epss 0.00

    Sticky Notes Widget 3.0.6 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payload containing 350000 repeated characters and paste it twice into a…

  • CVE-2021-47972HigMay 16, 2026
    risk 0.49cvss 7.5epss 0.00

    Sticky Notes & Color Widgets 1.4.2 contains a denial of service vulnerability that allows attackers to crash the application by creating notes with excessively long character strings. Attackers can paste large payloads of repeated characters into note fields to trigger…

  • CVE-2021-47971HigMay 16, 2026
    risk 0.49cvss 7.5epss 0.00

    My Notes Safe 5.3 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payload containing 350000 repeated characters and paste it twice into a new note…

  • CVE-2021-47970HigMay 16, 2026
    risk 0.49cvss 7.5epss 0.00

    Macaron Notes 5.5 contains a denial of service vulnerability that allows attackers to crash the application by creating notes with excessively long character strings. Attackers can generate a payload containing 350000 repeated characters and paste it into a note field to trigger…

  • CVE-2021-47969HigMay 16, 2026
    risk 0.49cvss 7.5epss 0.00

    Color Notes 1.4 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payload containing 350,000 repeated characters and paste it twice into a new note to…

  • CVE-2021-47956HigMay 16, 2026
    risk 0.53cvss 8.2epss 0.00

    EgavilanMedia PHPCRUD 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the firstname parameter. Attackers can send POST requests to insert.php with malicious firstname values to extract…

  • CVE-2021-47954HigMay 16, 2026
    risk 0.53cvss 8.2epss 0.00

    LayerBB 1.1.4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the search_query parameter. Attackers can send POST requests to /search.php with malicious search_query values using CASE WHEN…

  • CVE-2021-47942HigMay 16, 2026
    risk 0.42cvss 7.5epss 0.01

    Home Assistant Community Store (HACS) prior to 1.10.0 contains a path traversal vulnerability that allows unauthenticated attackers to read sensitive files by traversing directories via the /hacsfiles/ endpoint. Attackers can retrieve the .storage/auth file containing user…

  • CVE-2020-37247HigMay 16, 2026
    risk 0.51cvss 7.8epss 0.00

    Kite 4.2.0.1 U1 contains an unquoted service path vulnerability in the KiteService Windows service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers can place a malicious executable in the Program Files directory to be executed…