Skip to main content
CVE-2026-21448 CRITICAL POC PATCH Act Now

Bagisto eCommerce platform before 2.3.10 is vulnerable to server-side template injection (SSTI) through customer address fields during checkout. A normal customer can inject Blade template code that executes when viewed in the admin panel, achieving RCE. PoC available.

Laravel RCE Bagisto
NVD GitHub
CVSS 3.1
9.8
EPSS
0.2%
CVE-2026-21446 CRITICAL POC PATCH Act Now

Bagisto eCommerce platform (2.3 branch before 2.3.10) leaves installation API routes active after setup, allowing unauthenticated attackers to re-run the installer and take full control of the store including database credentials and admin account. PoC available.

Laravel Bagisto
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-67268 CRITICAL POC PATCH Act Now

gpsd (before commit dc966aa) has a heap buffer overflow in the NMEA2000 satellite view handler (PGN 129540). A malicious satellite count value overwrites the skyview array, enabling code execution on GPS daemon processes. PoC available, patch available.

Heap Overflow Denial Of Service Gpsd RCE Buffer Overflow
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-65125 CRITICAL POC Act Now

The online-movie-booking application (v5.5) by gosaliajainam contains SQL injection in movie_details.php, allowing unauthenticated attackers to extract the entire database. PoC exists. This is an open-source educational project often deployed without hardening.

PHP SQLi Online Movie Booking
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-21430 CRITICAL POC Act Now

Emlog 2.5.23 is vulnerable to CSRF in article creation, which chains with stored XSS to achieve account takeover. An attacker can force an admin to create an article containing malicious JavaScript that steals their session. No patch available.

XSS CSRF Emlog
NVD GitHub
CVSS 3.1
9.3
EPSS
0.0%
CVE-2026-21445 CRITICAL POC PATCH Act Now

Langflow before 1.7.0.dev45 exposes multiple API endpoints without authentication, allowing unauthenticated access to user conversations, transaction data, and message deletion. Critical for AI workflow platforms that handle sensitive prompt data.

Authentication Bypass AI / ML Langflow
NVD GitHub
CVSS 3.1
9.1
EPSS
0.1%
CVE-2026-21450 CRITICAL PATCH Act Now

Bagisto before 2.3.10 has a second server-side template injection vulnerability, this time via the type parameter. Like CVE-2026-21448, this enables remote code execution through the Blade template engine. Patch available in 2.3.10.

Laravel RCE Bagisto
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2025-11837 CRITICAL Act Now

QNAP Malware Remover before 6.6.8.20251023 has a code generation vulnerability that allows remote attackers to bypass the protection mechanism. An ironic vulnerability in a security tool that is supposed to protect QNAP NAS devices.

RCE Code Injection Malware Remover
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-59389 CRITICAL Act Now

QNAP Hyper Data Protector before 2.2.4.1 has an SQL injection vulnerability that allows remote attackers to execute unauthorized commands on the backup database. Combined with CVE-2025-59388 (hardcoded credentials), this creates a critical attack chain.

SQLi Hyper Data Protector
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-64121 CRITICAL Act Now

Nuvation Energy Multi-Stack Controller (MSC) for battery storage systems allows authentication bypass through an alternate channel, enabling unauthenticated attackers to access critical energy management functions. Affects versions 2.3.8 to 2.5.1.

Authentication Bypass Nplatform
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-64123 CRITICAL Act Now

Nuvation Energy MSC through 2.5.1 can be used as an unintended network proxy to bridge security boundaries. An attacker can leverage the controller to access networks that should be isolated, turning the battery controller into a pivot point.

Information Disclosure Nplatform
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-14998 CRITICAL Act Now

The Branda WordPress plugin (through 3.4.24) allows unauthenticated attackers to reset any user's password without identity verification, enabling account takeover including administrator accounts. Full site compromise is one password reset away.

WordPress Privilege Escalation PHP
NVD
CVSS 3.1
9.8
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy