|
881
|
4.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.0 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that could have allowed an authenticated user to cause den…
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2026-10733
|
2026-06-15 10:46 |
2026-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
882
|
8.7 |
HIGH
Network
|
gitlab
|
gitlab
|
GitLab has remediated an issue in GitLab EE affecting all versions from 17.1 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authentic…
|
CWE-79
Cross-site Scripting
|
CVE-2026-10087
|
2026-06-15 10:46 |
2026-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
883
|
5.3 |
MEDIUM
Local
|
-
|
-
|
A flaw has been found in IObit Malware Fighter up to 13.2.0. Affected by this vulnerability is an unknown functionality of the component DLL Handler. This manipulation causes permission issues. The a…
|
CWE-266
CWE-275
Incorrect Privilege Assignment
Permission Issues
|
CVE-2026-12201
|
2026-06-15 10:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
884
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in Ritlabs TinyWeb Server up to 1.94 on Win32. This impacts an unknown function in the library libeay32.dll.html of the component Header Handler. The manipu…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-12200
|
2026-06-15 10:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
885
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in Microweber up to 2.0.20. This affects the function userfiles_path of the file /api_nosession/thumbnail_img of the component API Endpoint. Executing a manipulation of…
|
CWE-22
Path Traversal
|
CVE-2026-12198
|
2026-06-15 09:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
886
|
7.2 |
HIGH
Network
|
-
|
-
|
A security flaw has been discovered in Ruijie EG105G-P 2.340. The impacted element is the function nslookup of the file /cgi-bin/luci/api/diagnose of the component JSON-RPC Diagnose Endpoint. Perform…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-12197
|
2026-06-15 09:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
887
|
7.8 |
HIGH
Local
|
-
|
-
|
A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtl_Handler in the library RevoDetector.sys of the component IOCTL Handler. Such manipula…
|
CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error')
Heap-based Buffer Overflow
|
CVE-2026-12193
|
2026-06-15 09:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
888
|
8.8 |
HIGH
Adjacent
|
-
|
-
|
A vulnerability was determined in GALAYOU Y4 1.0.0. Impacted is an unknown function of the component Web Server. This manipulation causes buffer overflow. The attack is only possible within the local…
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-12192
|
2026-06-15 09:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
889
|
5.3 |
MEDIUM
Network
|
-
|
-
|
Crypt::PBKDF2 versions before 0.261630 for Perl have a weak default algorithm and number of iterations.
The default algorithm is HMAC-SHA1, which should only be used for legacy systems.
These versi…
|
CWE-916
Use of Password Hash With Insufficient Computational Effort
|
CVE-2026-9641
|
2026-06-15 00:16 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
890
|
7.8 |
HIGH
Local
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
media: rockchip: rkcif: fix off by one bugs
Change these comparisons from > vs >= to avoid accessing one element
beyond the end o…
|
-
|
CVE-2026-52907
|
2026-06-14 15:16 |
2026-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
