33
Total CVEs
0
KEV Entries
0
Critical
3
High
30
Medium
6
Articles
CVE Feed
33 CVEs
CVE-2026-6560
HIGH
7.4
A security vulnerability has been detected in H3C Magic B0 up to 100R002. This vulnerability affects the function Edit_BasicSSID of the file /goform/aspForm. Such manipulation of the argument param le...
CVE-2026-6563
HIGH
7.4
A vulnerability has been found in H3C Magic B1 up to 100R004. The affected element is the function SetAPWifiorLedInfoById of the file /goform/aspForm. The manipulation of the argument param leads to b...
CVE-2026-6581
HIGH
7.4
A vulnerability was detected in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function SetMobileAPInfoById of the file /goform/aspForm. Performing a manipulation of the argument pa...
CVE-2026-6588
MEDIUM
6.9
A weakness has been identified in serge-chat serge up to 1.4TB. The impacted element is the function download_model/delete_model of the file api/src/serge/routers/model.py of the component Model API E...
CVE-2026-6594
MEDIUM
6.9
A vulnerability was determined in brikcss merge up to 1.3.0. This affects an unknown part. Executing a manipulation of the argument __proto__/constructor.prototype/prototype can lead to improperly con...
CVE-2026-6562
MEDIUM
6.9
A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is the function getListByPage of the file /index/Search/index.html. Executing a manipulation of the argument keyword can lead to sql ...
CVE-2026-6568
MEDIUM
6.9
A vulnerability was determined in kodcloud KodExplorer up to 4.52. This affects the function share.class.php::initShareOld of the file /app/controller/share.class.php of the component Public Share Han...
CVE-2026-6569
MEDIUM
6.9
A vulnerability was identified in kodcloud KodExplorer up to 4.52. This impacts the function fileGet of the file /app/controller/share.class.php of the component fileGet Endpoint. Such manipulation of...
CVE-2026-6574
MEDIUM
6.9
A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation ...
CVE-2026-6577
MEDIUM
6.9
A vulnerability was identified in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an unknown function of the file owntracks/views.py of the component logtracks Endpoint. The manipulatio...
CVE-2026-6579
MEDIUM
6.9
A weakness has been identified in liangliangyy DjangoBlog up to 2.1.0.0. This impacts an unknown function of the file blog/views.py of the component Clean Endpoint. This manipulation causes missing au...
CVE-2026-6580
MEDIUM
6.9
A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.0.0. Affected is an unknown function of the file owntracks/views.py of the component Amap API Call Handler. Such manipul...
CVE-2026-6582
MEDIUM
6.9
A flaw has been found in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function get_vector_db_details of the file superagi/controllers/vector_dbs.py of the component Vector D...
CVE-2026-0868
MEDIUM
6.4
The EMC – Easily Embed Calendly Scheduling Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's calendly shortcode in all versions up to, and including, 4.4 due ...
CVE-2026-6572
MEDIUM
6.3
A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileUp...
CVE-2026-6578
MEDIUM
6.3
A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of ...
CVE-2026-6584
MEDIUM
5.3
A vulnerability was found in TransformerOptimus SuperAGI up to 0.0.14. This vulnerability affects the function update_user of the file superagi/controllers/user.py of the component User Update Endpoin...
CVE-2026-6585
MEDIUM
5.3
A vulnerability was determined in TransformerOptimus SuperAGI up to 0.0.14. This issue affects the function update_organisation of the file superagi/controllers/organisation.py of the component Organi...
CVE-2026-6586
MEDIUM
5.3
A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Impacted is the function get_budget/update_budget of the file superagi/controllers/budget.py of the component Budget Endpoin...
CVE-2026-6587
MEDIUM
5.3
A security flaw has been discovered in vibrantlabsai RAGAS up to 0.4.3. The affected element is the function _try_process_local_file/_try_process_url of the file src/ragas/metrics/collections/multi_mo...
CVE-2026-6589
MEDIUM
5.3
A security vulnerability has been detected in ComfyUI up to 0.13.0. This affects the function create_origin_only_middleware of the file server.py. The manipulation leads to cross-site request forgery....
CVE-2026-6590
MEDIUM
5.3
A vulnerability was detected in ComfyUI up to 0.13.0. This impacts the function get_model_preview of the file app/model_manager.py of the component Model Preview Endpoint. The manipulation results in ...
CVE-2026-6591
MEDIUM
5.3
A flaw has been found in ComfyUI up to 0.13.0. Affected is the function folder_paths.get_annotated_filepath of the file folder_paths.py of the component LoadImage Node. This manipulation of the argume...
CVE-2026-6559
MEDIUM
5.3
A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub_401F80 of the file /cgi-bin/login.cgi. This manipulation of the argument Hostname causes cross site scripting...
CVE-2026-6564
MEDIUM
5.3
A vulnerability was found in EMQ EMQX Enterprise up to 6.1.0. The impacted element is an unknown function of the component Session Handling. The manipulation results in improper authorization. It is p...
CVE-2026-6571
MEDIUM
5.3
A weakness has been identified in kodcloud KodExplorer up to 4.52. Affected by this vulnerability is the function roleGroupAction of the file /app/controller/systemRole.class.php. Executing a manipula...
CVE-2026-6573
MEDIUM
5.3
A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app/exam/controller/exams.master.php of the component Instant Exam Creation Handler. The manipulation of th...
CVE-2026-6576
MEDIUM
5.3
A vulnerability was determined in liangliangyy DjangoBlog up to 2.1.0.0. The affected element is the function CommandHandler of the file servermanager/api/commonapi.py of the component WeChat Bot Inte...
CVE-2026-6583
MEDIUM
5.3
A vulnerability has been found in TransformerOptimus SuperAGI up to 0.0.14. This affects the function delete_api_key/edit_api_key of the file superagi/controllers/api_key.py of the component API Key M...
CVE-2026-6592
MEDIUM
5.1
A vulnerability has been found in ComfyUI up to 0.13.0. Affected by this vulnerability is the function getuserdata of the file app/user_manager.py of the component userdata Endpoint. Such manipulation...
CVE-2026-6593
MEDIUM
5.1
A vulnerability was found in ComfyUI up to 0.13.0. Affected by this issue is some unknown functionality of the file server.py of the component View Endpoint. Performing a manipulation results in cross...
CVE-2026-6561
MEDIUM
5.1
A vulnerability was detected in EyouCMS up to 1.7.1. This issue affects the function edit_adminlogo of the file application/admin/controller/Index.php. Performing a manipulation of the argument filena...
CVE-2026-6570
MEDIUM
5.1
A security flaw has been discovered in kodcloud KodExplorer up to 4.52. Affected is the function initInstall of the file /app/controller/systemMember.class.php. Performing a manipulation of the argume...
Latest Headlines
6 articles
RSS Feed Sources
The Register
Just like phishing for gullible humans, prompt injecting AIs is here to stay
2026-04-19 23:00
BleepingComputer
Vercel confirms breach after hackers claim to be selling stolen data
2026-04-19 17:32
BleepingComputer
Vercel confirms breach as hackers claim to be selling stolen data
2026-04-19 17:32
BleepingComputer
Apple account change alerts abused to send phishing emails
2026-04-19 16:03
BleepingComputer
NIST to stop rating non-priority flaws due to volume increase
2026-04-19 14:17
The Register
I meant to do that! AI vendors shrug off responsibility for vulns
2026-04-19 11:07