|
1241
|
8.8 |
HIGH
Network
|
mbs-solutions
|
universal_gateway_firmware
|
The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of user-supplied input.
Update
|
CWE-22
Path Traversal
|
CVE-2026-35082
|
2026-06-9 02:17 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1242
|
8.8 |
HIGH
Network
|
mbs-solutions
|
universal_gateway_firmware
|
A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root.
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-35083
|
2026-06-9 02:17 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1243
|
8.8 |
HIGH
Network
|
mbs-solutions
|
universal_gateway_firmware
|
A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root.
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-35084
|
2026-06-9 02:17 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1244
|
10.0 |
CRITICAL
Network
|
-
|
-
|
Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin, LLC Product Slider Pro for WooCommerce allows Malicious Software Implanted.
This issue affects Product Slider Pro fo…
Update
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2026-49777
|
2026-06-9 02:16 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1245
|
- |
|
-
|
-
|
HAX CMS helps manage microsite universe with PHP or NodeJs backends. Prior to version 26.0.0, an attack chain utilizing Stored XSS alongside dynamic token exposure in the `/system/api/connectionSetti…
Update
|
CWE-79
CWE-522
CWE-922
Cross-site Scripting
Insufficiently Protected Credentials
Insecure Storage of Sensitive Information
|
CVE-2026-46511
|
2026-06-9 02:16 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1246
|
- |
|
-
|
-
|
HAX CMS helps manage microsite universe with PHP or NodeJs backends. Starting in version 11.0.6 and prior to version 25.0.0, the file upload functionality in HAXCMS PHP only validates file extensions…
Update
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-46400
|
2026-06-9 02:16 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1247
|
- |
|
-
|
-
|
HAX CMS helps manage microsite universe with PHP or NodeJs backends. The PHP version of HAX CMS prior to version 26.0.0 has an authenticated file overwrite vulnerability. An attacker can exploit this…
Update
|
CWE-15
CWE-73
CWE-78
External Control of System or Configuration Setting
External Control of File Name or Path
OS Command
|
CVE-2026-46399
|
2026-06-9 02:16 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1248
|
6.5 |
MEDIUM
Network
|
-
|
-
|
HAX CMS helps manage microsite universe with PHP or NodeJs backends. Prior to version 26.0.0, an Authenticated Local File Inclusion (LFI) vulnerability in the HAXCMS saveOutline endpoint allows a low…
Update
|
CWE-22
CWE-73
Path Traversal
External Control of File Name or Path
|
CVE-2026-46397
|
2026-06-9 02:16 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1249
|
- |
|
-
|
-
|
HAX CMS helps manage microsite universe with PHP or NodeJs backends. An authenticated Server-Side Request Forgery (SSRF) vulnerability in versions prior to 26.0.0 allows authenticated users to fetch …
Update
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-46393
|
2026-06-9 02:16 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1250
|
- |
|
-
|
-
|
HAX CMS helps manage microsite universe with PHP or NodeJs backends. Starting in version 9.0.1 and prior to version 26.0.0 of @haxtheweb/open-apis, multiple functions conduct substring-only matching …
Update
|
CWE-183
CWE-918
Permissive List of Allowed Inputs
Server-Side Request Forgery (SSRF)
|
CVE-2026-46391
|
2026-06-9 02:16 |
2026-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
