Skip to main content
CVE-2026-23521 MEDIUM POC This Month

Traccar GPS tracking system through version 6.11.1 allows authenticated users to conduct arbitrary file writes by setting device identifiers to absolute paths, which bypass path validation during image uploads. Public exploit code exists for this vulnerability, and no patch is currently available. An attacker with device management privileges could write files outside the intended media directory, potentially compromising system integrity.

Path Traversal Traccar
NVD GitHub
CVSS 3.1
6.5
EPSS
0.0%
CVE-2026-26464 MEDIUM POC This Month

Society Management System Portal versions up to 1.0 is affected by cross-site scripting (xss) (CVSS 6.1).

PHP XSS Society Management System Portal
NVD GitHub
CVSS 3.1
6.1
EPSS
0.1%
CVE-2026-2984 MEDIUM POC This Month

Student Result Management System versions up to 1.0 is affected by improper resource shutdown or release (CVSS 6.5).

PHP Denial Of Service
NVD GitHub VulDB
CVSS 4.0
5.5
EPSS
0.1%
CVE-2026-3026 MEDIUM POC This Month

Jeewms 3.7 contains a server-side request forgery vulnerability in the UEditor plugin's getRemoteImage.jsp file, where the upfile parameter can be manipulated to make the server perform unintended network requests. Public exploit code exists for this vulnerability, and the vendor has not provided a patch despite early notification. Remote attackers can exploit this without authentication to conduct SSRF attacks with low complexity.

SSRF Jeewms
NVD VulDB
CVSS 4.0
5.5
EPSS
0.0%
CVE-2026-2983 MEDIUM POC This Month

SourceCodester Student Result Management System 1.0 contains improper access controls in the bulk user import functionality that allows unauthenticated remote attackers to manipulate file parameters and gain unauthorized access. Public exploit code exists for this vulnerability, though no patch is currently available. The attack requires no user interaction and can be exploited over the network with basic complexity.

PHP Information Disclosure
NVD GitHub VulDB
CVSS 4.0
5.5
EPSS
0.0%
CVE-2025-69208 MEDIUM POC PATCH This Month

free5GC UDR is the user data repository (UDR) for free5GC, an an open-source project for 5th generation (5G) mobile core networks. Versions prior to 1.4.1 contain an Improper Error Handling vulnerability with Information Exposure. [CVSS 5.3 MEDIUM]

Information Disclosure Udr
NVD GitHub
CVSS 3.1
5.3
EPSS
0.0%
CVE-2026-2975 MEDIUM POC This Month

FastApiAdmin versions up to 2.2.0 expose sensitive information through the reset_api_docs function in the Custom Documentation Endpoint, allowing unauthenticated remote attackers to access confidential data. Public exploit code is available for this vulnerability, increasing the risk of active exploitation. No patch is currently available to remediate this issue.

Information Disclosure Fastapiadmin
NVD GitHub VulDB
CVSS 3.1
5.3
EPSS
0.0%
CVE-2026-27742 MEDIUM POC This Month

Stored XSS in Bludit 3.16.2 allows authenticated users to inject malicious JavaScript into post content that executes when viewed by other users, enabling session hijacking and credential theft. The vulnerability exists because the application relies solely on client-side input validation while failing to sanitize or encode content server-side. Public exploit code is available, though no patch has been released yet.

XSS Bludit
NVD GitHub
CVSS 4.0
5.1
EPSS
0.0%
CVE-2026-27741 MEDIUM POC This Month

Bludit 3.16.1 lacks CSRF protections on administrative endpoints, allowing attackers to trick authenticated admins into uninstalling plugins or installing malicious themes via crafted web requests. Public exploit code exists for this vulnerability, enabling unauthorized modification of site functionality and potential code execution through untrusted theme installation.

CSRF Bludit
NVD GitHub
CVSS 4.0
5.1
EPSS
0.0%
CVE-2025-61145 MEDIUM POC PATCH This Month

libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c. [CVSS 5.0 MEDIUM]

Information Disclosure Libtiff Red Hat Suse
NVD GitHub
CVSS 3.1
5.0
EPSS
0.0%
CVE-2026-27511 MEDIUM POC This Month

Tenda F3 Wireless Router firmware V12.01.01.55_multi lacks clickjacking protections in its web administrative interface, enabling attackers to embed configuration pages in iframes and manipulate authenticated administrators into making unauthorized changes. Public exploit code exists for this vulnerability, affecting administrators who access the router's management interface. While the impact is limited to configuration tampering rather than direct compromise, the lack of available patches leaves affected devices vulnerable.

XSS F3 Firmware
NVD
CVSS 3.1
4.3
EPSS
0.0%
CVE-2026-27514 MEDIUM This Month

F3 Firmware contains a vulnerability that allows attackers to the response to be stored in client-side caches and recovered by other local use (CVSS 6.5).

Information Disclosure F3 Firmware
NVD
CVSS 3.1
6.5
EPSS
0.0%
CVE-2026-2698 MEDIUM This Month

Security Center's access control implementation fails to properly restrict authenticated users to their authorized scope, allowing privilege escalation to view sensitive data. An attacker with valid credentials can bypass authorization checks to access confidential information outside their assigned permissions. No patch is currently available for this vulnerability.

Authentication Bypass Security Center
NVD
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-70044 MEDIUM This Month

An issue pertaining to CWE-295: Improper Certificate Validation was discovered in fofolee uTools-quickcommand 5.0.3. [CVSS 6.5 MEDIUM]

Authentication Bypass Utools Quickcommand
NVD GitHub
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-61147 MEDIUM This Month

strukturag libde265 commit d9fea9d wa discovered to contain a segmentation fault via the component decoder_context::compute_framedrop_table(). [CVSS 6.2 MEDIUM]

Buffer Overflow Libde265
NVD GitHub VulDB
CVSS 3.1
6.2
EPSS
0.0%
CVE-2026-27512 MEDIUM This Month

Tenda F3 Wireless Router firmware V12.01.01.55_multi is vulnerable to reflected cross-site scripting (XSS) in its administrative interface due to missing MIME-sniffing protections and insufficient input validation. An unauthenticated attacker can inject malicious scripts that execute in the context of the admin interface when a user visits a crafted link, potentially leading to administrative account compromise. No patch is currently available for this vulnerability.

XSS F3 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-59873 MEDIUM This Month

An information exposure vulnerability exists in Vulnerability in HCL Software ZIE for Web. The application transmits sensitive session tokens and authentication identifiers within the URL query parameters . [CVSS 5.9 MEDIUM]

Information Disclosure
NVD
CVSS 3.1
5.9
EPSS
0.0%
CVE-2026-22568 MEDIUM This Month

Zscaler Internet Access Admin Portal contains an input validation flaw that enables authenticated administrators to retrieve sensitive internal information through specially crafted requests in specific configurations. The vulnerability requires high-level admin privileges and does not impact confidentiality or availability broadly, though it poses a risk in multi-tenant environments where privilege boundaries matter. Currently, no patch is available.

Code Injection Zscaler Internet Access Admin Portal
NVD
CVSS 3.1
5.5
EPSS
0.1%
CVE-2026-3025 MEDIUM This Month

Smart Heating Integrated Management Platform versions up to 1.0.0 is affected by improper access control (CVSS 7.3).

File Upload Authentication Bypass Smart Heating Integrated Management Platform
NVD VulDB
CVSS 4.0
5.5
EPSS
0.0%
CVE-2025-61143 MEDIUM PATCH This Month

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c. [CVSS 5.5 MEDIUM]

Null Pointer Dereference Libtiff Red Hat Suse
NVD GitHub VulDB
CVSS 3.1
5.5
EPSS
0.0%
CVE-2026-2997 MEDIUM This Month

Tronclass by WisdomGarden contains an insecure direct object reference flaw that allows authenticated attackers to bypass access controls and obtain course invitation codes by manipulating course ID parameters. An attacker exploiting this vulnerability can enroll in arbitrary courses without authorization. No patch is currently available for this medium-severity issue.

Authentication Bypass
NVD
CVSS 3.1
5.4
EPSS
0.0%
CVE-2026-3063 MEDIUM This Month

Google Chrome versions prior to 145.0.7632.116 allow attackers to inject malicious scripts or HTML into privileged pages through a compromised DevTools extension if a user can be tricked into installing it. The vulnerability requires user interaction to install a malicious extension but could enable unauthorized script execution in sensitive browser contexts. No patch is currently available.

Google Chrome Red Hat Suse
NVD
CVSS 3.1
5.4
EPSS
0.0%
CVE-2026-3075 MEDIUM This Month

Simple Ajax Chat through version 20251121 exposes sensitive system information to unauthorized access due to improper data protection controls. An unauthenticated remote attacker can retrieve embedded sensitive data from the application with minimal effort. No patch is currently available to remediate this vulnerability.

Information Disclosure
NVD
CVSS 3.1
5.3
EPSS
0.0%
CVE-2026-27513 MEDIUM This Month

The Tenda F3 Wireless Router firmware lacks CSRF protections in its administrative interface, enabling attackers to trick authenticated administrators into making unauthorized configuration changes through crafted requests. An unauthenticated attacker can exploit this to modify router settings by socially engineering an admin into visiting a malicious webpage. No patch is currently available for this vulnerability.

CSRF F3 Firmware
NVD
CVSS 3.1
4.3
EPSS
0.0%
CVE-2026-26365 MEDIUM This Month

HTTP request smuggling in Akamai Ghost CDN edge servers before 2026-02-06 allows remote attackers to craft malicious requests with conflicting hop-by-hop headers that cause improper message framing when forwarded to origin servers. An attacker can exploit this to inject unauthorized requests or bypass security controls by manipulating how the origin server interprets the request body. No patch is currently available.

Code Injection
NVD
CVSS 3.1
4.0
EPSS
0.0%
CVE-2025-61146 MEDIUM PATCH This Month

saitoha libsixel until v1.8.7 was discovered to contain a memory leak via the component malloc_stub.c. [CVSS 4.0 MEDIUM]

Information Disclosure Libsixel
NVD GitHub
CVSS 3.1
4.0
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy