Skip to main content
CVE-2026-3408 LOW POC PATCH GHSA Monitor

Open Babel versions up to 3.1.1 contain a null pointer dereference in the CDXML file handler's OBAtom::GetExplicitValence function, allowing remote attackers to crash the application through maliciously crafted files. Public exploit code exists for this vulnerability, making it a practical attack vector for denial of service. A patch is available and should be applied to all affected installations.

Denial Of Service Open Babel Babel
NVD GitHub VulDB
CVSS 4.0
2.1
EPSS
0.1%
CVE-2025-15597 LOW POC PATCH Monitor

A vulnerability has been found in Dataease SQLBot up to 1.4.0. This affects an unknown function of the file backend/apps/system/api/assistant.py of the component API Endpoint. [CVSS 6.3 MEDIUM]

Information Disclosure Sqlbot
NVD GitHub VulDB
CVSS 4.0
2.1
EPSS
0.1%
CVE-2026-3412 LOW POC Monitor

University Management System versions up to 1.0 is affected by cross-site scripting (xss) (CVSS 4.3).

PHP XSS
NVD GitHub VulDB
CVSS 4.0
2.1
EPSS
0.0%
CVE-2026-3403 LOW POC Monitor

A vulnerability was detected in PHPGurukul Student Record Management System 1.0. This issue affects some unknown processing of the file /edit-subject.php. [CVSS 2.4 LOW]

PHP XSS
NVD GitHub VulDB
CVSS 4.0
1.9
EPSS
0.0%
CVE-2026-3402 LOW POC Monitor

A security vulnerability has been detected in PHPGurukul Student Record Management System up to 1.0. This vulnerability affects unknown code of the file /edit-course.php. [CVSS 2.4 LOW]

PHP XSS
NVD GitHub VulDB
CVSS 4.0
1.9
EPSS
0.0%
CVE-2026-3401 LOW POC Monitor

Web-Based Pharmacy Product Management System versions up to 1.0 is affected by insufficient session expiration (CVSS 3.1).

Information Disclosure Web Based Pharmacy Product Management System
NVD GitHub VulDB
CVSS 4.0
1.3
EPSS
0.1%
CVE-2026-3404 LOW POC Monitor

Jeesite versions up to 5.15.1. contains a vulnerability that allows attackers to xml external entity reference (CVSS 5.0).

Java XXE
NVD VulDB
CVSS 4.0
1.3
EPSS
0.0%
CVE-2026-0995 LOW Monitor

An issue has been identified in Arm C1-Pro before r1p2-50eac0, where, under certain conditions, a TLBI+DSB might fail to ensure the completion of memory accesses related to SME. [CVSS 3.6 LOW]

Race Condition Information Disclosure C1 Pro Firmware
NVD
CVSS 3.1
3.6
EPSS
0.0%
CVE-2026-3407 LOW Monitor

A vulnerability was determined in YosysHQ yosy versions up to 0.62. is affected by buffer overflow (CVSS 3.3).

Buffer Overflow
NVD GitHub VulDB
CVSS 4.0
1.9
EPSS
0.0%
CVE-2026-3405 LOW Monitor

A vulnerability has been found in thinkgem JeeSite up to 5.15.1. The affected element is an unknown function of the component Connection Handler. [CVSS 3.1 LOW]

Path Traversal Jeesite
NVD VulDB
CVSS 4.0
1.3
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy