Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
12557
Total
848
Critical
3598
High
3936
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-5546 | MEDIUM | 6.3 | A flaw has been found in Campcodes Complete Online Learning Management System 1.0. This impacts the function add_lesson of the file /application/models/Crud_model.php. This manipulation causes … | Apr 05, 2026 |
| CVE-2026-5544 | HIGH | 8.8 | A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-180535. The impacted element is an unknown function of the file /goform/formRemoteControl. The … | Apr 05, 2026 |
| CVE-2026-5543 | MEDIUM | 6.3 | A vulnerability was identified in PHPGurukul User Registration & Login and User Management System 3.3. The affected element is an unknown function of the file … | Apr 05, 2026 |
| CVE-2026-5542 | MEDIUM | 4.3 | A vulnerability was determined in code-projects Simple Laundry System 1.0. Impacted is an unknown function of the file /modstaffinfo.php of the component Parameter Handler. Executing … | Apr 05, 2026 |
| CVE-2026-5541 | MEDIUM | 4.3 | A vulnerability was found in code-projects Simple Laundry System 1.0. This issue affects some unknown processing of the file /modmemberinfo.php of the component Parameter Handler. … | Apr 05, 2026 |
| CVE-2026-5540 | HIGH | 7.3 | A vulnerability has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /modifymember.php of the component Parameter Handler. … | Apr 05, 2026 |
| CVE-2026-5590 | MEDIUM | 6.4 | A race condition during TCP connection teardown can cause tcp_recv() to operate on a connection that has already been released. If tcp_conn_search() returns NULL while … | Apr 05, 2026 |
| CVE-2026-5539 | MEDIUM | 4.3 | A flaw has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /modifymember.php of the component Parameter Handler. … | Apr 05, 2026 |
| CVE-2026-5538 | MEDIUM | 6.3 | A vulnerability was detected in QingdaoU OnlineJudge up to 1.6.1. Affected by this issue is the function service_url of the file JudgeServer.service_url of the component … | Apr 05, 2026 |
| CVE-2026-5537 | MEDIUM | 6.3 | A security vulnerability has been detected in halex CourseSEL up to 1.1.0. Affected by this vulnerability is the function check_sel of the file Apps/Index/Controller/IndexController.class.php of … | Apr 05, 2026 |
| CVE-2026-5536 | HIGH | 7.3 | A weakness has been identified in FedML-AI FedML up to 0.8.9. Affected is the function sendMessage of the file grpc_server.py of the component gRPC server. … | Apr 05, 2026 |
| CVE-2026-5535 | MEDIUM | 4.3 | A security flaw has been discovered in FedML-AI FedML up to 0.8.9. This impacts an unknown function of the file FileUtils.java of the component MQTT … | Apr 05, 2026 |
| CVE-2026-5534 | HIGH | 7.3 | A vulnerability was identified in itsourcecode Online Enrollment System 1.0. This affects an unknown function of the file /sms/user/index.php?view=edit&id=10 of the component Parameter Handler. Such … | Apr 05, 2026 |
| CVE-2026-5533 | MEDIUM | 4.3 | A vulnerability was determined in badlogic pi-mono 0.58.4. The impacted element is an unknown function of the file packages/web-ui/src/tools/artifacts/SvgArtifact.ts of the component SVG Artifact Handler. … | Apr 05, 2026 |
| CVE-2026-5532 | MEDIUM | 6.3 | A vulnerability was found in ScrapeGraphAI scrapegraph-ai up to 1.74.0. The affected element is the function create_sandbox_and_execute of the file scrapegraphai/nodes/generate_code_node.py of the component GenerateCodeNode … | Apr 05, 2026 |
| CVE-2026-5531 | MEDIUM | 5.3 | A vulnerability has been found in SourceCodester Student Result Management System 1.0. Impacted is an unknown function of the file /login_credentials.txt of the component HTTP … | Apr 05, 2026 |
| CVE-2026-5530 | MEDIUM | 6.3 | A flaw has been found in Ollama up to 18.1. This issue affects some unknown processing of the file server/download.go of the component Model Pull … | Apr 05, 2026 |
| CVE-2026-5529 | MEDIUM | 4.3 | A vulnerability was detected in Dromara lamp-cloud up to 5.8.1. This vulnerability affects the function pageUser of the file /defUser/pageUser of the component DefUserController. Performing … | Apr 05, 2026 |
| CVE-2026-5528 | MEDIUM | 6.3 | A security vulnerability has been detected in MoussaabBadla code-screenshot-mcp up to 0.1.0. This affects an unknown part of the component HTTP Interface. Such manipulation leads … | Apr 05, 2026 |
| CVE-2026-5527 | MEDIUM | 5.3 | A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component … | Apr 05, 2026 |
| CVE-2026-5526 | HIGH | 7.3 | A security flaw has been discovered in Tenda 4G03 Pro up to 1.0/1.1/04.03.01.53/192.168.0.1. Affected by this vulnerability is an unknown functionality of the file /bin/httpd. … | Apr 04, 2026 |
| CVE-2018-25246 | HIGH | 7.5 | Wikipedia 12.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash the application by submitting oversized input through the search functionality. Attackers … | Apr 04, 2026 |
| CVE-2016-20054 | MEDIUM | 4.3 | Nodcms contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized administrative actions by crafting malicious forms. Attackers can trick authenticated administrators into … | Apr 04, 2026 |
| CVE-2018-25255 | HIGH | 8.4 | 10-Strike LANState 8.8 contains a local buffer overflow vulnerability in structured exception handling that allows local attackers to execute arbitrary code by crafting malicious LSM … | Apr 04, 2026 |
| CVE-2018-25254 | CRITICAL | 9.8 | NICO-FTP 3.0.1.19 contains a structured exception handler buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending crafted FTP commands. Attackers can … | Apr 04, 2026 |