|
971
|
6.1 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on an affected device, possibly leading to b…
New
|
CWE-73
External Control of File Name or Path
|
CVE-2026-20175
|
2026-06-4 22:54 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
972
|
8.6 |
HIGH
Network
|
-
|
-
|
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attack…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-20230
|
2026-06-4 22:54 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
973
|
6.1 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based user interface of Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. Cisco has addressed this…
New
|
CWE-79
Cross-site Scripting
|
CVE-2026-20233
|
2026-06-4 22:54 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
974
|
8.8 |
HIGH
Network
|
-
|
-
|
The Content Visibility for Divi Builder plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.02 via the 'et_pb_text' shortcode 'cvdb_content_visibility_…
New
|
CWE-94
Code Injection
|
CVE-2026-1829
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
975
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in code-projects Student Admission System 1.0. Affected is an unknown function of the file /index.php. This manipulation of the argument eid/did causes sql injection. The attack…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10620
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
976
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in SourceCodester Human Resource Management 1.0. Affected by this vulnerability is an unknown functionality of the file /detailview.php of the component Employee View P…
New
|
CWE-99
Resource Injection
|
CVE-2026-10624
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
977
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in sayan365 student-management-system up to 7f3c9ce7d410332335c2affac93a385485051800. This impacts an unknown function. The manipulation results in improper authenticatio…
New
|
CWE-287
Improper Authentication
|
CVE-2026-10619
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
978
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in warmcat libwebsockets up to 4.5.8. This issue affects the function lws_ssh_parse_plaintext of the file plugins/protocol_lws_ssh_base/sshd.c of the component SSH Protocol Hand…
New
|
CWE-400
CWE-404
Uncontrolled Resource Consumption
Improper Resource Shutdown or Release
|
CVE-2026-10650
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
979
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in SourceCodester Online Boat Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the component Administrative Endpoint. T…
New
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-10693
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
980
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function is_safe_regex_pattern of the component search_code_advanced. Executing a manipulation of the argum…
New
|
CWE-400
CWE-1333
Uncontrolled Resource Consumption
Inefficient Regular Expression Complexity
|
CVE-2026-10692
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
