Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23329
Total
1657
Critical
7330
High
7410
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-11504 | HIGH | 8.8 | A vulnerability was detected in Tenda CX12L 16.03.53.12. The impacted element is the function setSchedWifi of the file /goform/openSchedWifi of the component Wi-Fi Schedule Configuration … | Jun 08, 2026 |
| CVE-2026-9506 | UNKNOWN | — | This vulnerability exists in Bagisto due to improper validation of user-supplied input in the ImageCacheController component. An unauthenticated remote attacker could exploit this vulnerability by … | Jun 08, 2026 |
| CVE-2026-11503 | HIGH | 8.8 | A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is the function form_fast_setting_wifi_set of the file /goform/fast_setting_wifi_set of the component Wi-Fi … | Jun 08, 2026 |
| CVE-2026-11502 | LOW | 3.1 | A weakness has been identified in JeecgBoot up to 3.9.2. Impacted is the function HttpServletResponse.sendRedirect of the file jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/system/controller/ThirdLoginController.java of the component Third-Party Login. This … | Jun 08, 2026 |
| CVE-2026-11501 | HIGH | 7.3 | A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This issue affects some unknown processing of the file /classes/Master.php?f=save_patient. The … | Jun 08, 2026 |
| CVE-2026-11500 | MEDIUM | 5.0 | A vulnerability was identified in Weaviate up to 1.37.7. This vulnerability affects the function validateConfig of the file usecases/auth/authentication/apikey/client.go of the component Static API Key … | Jun 08, 2026 |
| CVE-2024-56123 | UNKNOWN | — | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Jun 08, 2026 |
| CVE-2024-56122 | UNKNOWN | — | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Jun 08, 2026 |
| CVE-2024-56121 | UNKNOWN | — | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Jun 08, 2026 |
| CVE-2024-56120 | UNKNOWN | — | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Jun 08, 2026 |
| CVE-2026-41724 | HIGH | 8.0 | VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject … | Jun 08, 2026 |
| CVE-2026-41723 | HIGH | 8.0 | VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject … | Jun 08, 2026 |
| CVE-2026-41722 | HIGH | 8.0 | VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject … | Jun 08, 2026 |
| CVE-2026-3238 | HIGH | 7.5 | A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types … | Jun 08, 2026 |
| CVE-2026-11499 | CRITICAL | 9.8 | A vulnerability was determined in Tenda HG7HG9 and HG10 300001138_en_xpon. This affects the function formDOMAINBLK of the file /boaform/formDOMAINBLK. Executing a manipulation of the argument … | Jun 08, 2026 |
| CVE-2026-11498 | HIGH | 8.8 | A vulnerability was found in Tenda HG7HG9 and HG10 300001138_en_xpon. Affected by this issue is the function asp_voip_OtherSet of the file /boaform/voip_other_set of the component … | Jun 08, 2026 |
| CVE-2026-11497 | MEDIUM | 5.3 | A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unknown functionality of the file /etc/conf.d/boa/boa.conf of the component Boa … | Jun 08, 2026 |
| CVE-2026-11495 | MEDIUM | 6.3 | A vulnerability was detected in CodeAstro Ingredients Stock Management System 1.0. This impacts an unknown function of the file /Ingredients-Stock/add_stock.php. The manipulation of the argument … | Jun 08, 2026 |
| CVE-2026-11494 | MEDIUM | 4.3 | A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The … | Jun 08, 2026 |
| CVE-2026-11493 | MEDIUM | 5.0 | A weakness has been identified in Tenda AC15 15.03.05.19. The impacted element is an unknown function of the file /etc_ro/smb.conf of the component Samba. Executing … | Jun 08, 2026 |
| CVE-2026-11492 | MEDIUM | 4.3 | A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf of the component vsftpd. … | Jun 08, 2026 |
| CVE-2026-11491 | LOW | 2.4 | A vulnerability was identified in CodeAstro Human Resource Management System 1.0. Impacted is an unknown function of the file /notice/All_notice of the component Notice Board … | Jun 08, 2026 |
| CVE-2026-11490 | HIGH | 7.3 | A vulnerability was determined in code-projects Online Music Site 1.0. This issue affects some unknown processing of the file /Frontend/Search.php. This manipulation of the argument … | Jun 08, 2026 |
| CVE-2026-11489 | HIGH | 7.3 | A vulnerability was found in code-projects Online Music Site 1.0. This vulnerability affects unknown code of the file /Administrator/PHP/AdminDeleteAlbum.php. The manipulation of the argument ID … | Jun 08, 2026 |
| CVE-2026-11488 | HIGH | 7.3 | A vulnerability has been found in code-projects Simple Flight Ticket Booking System 1.0. This affects an unknown part of the file checkUser.php of the component … | Jun 08, 2026 |