|
531
|
8.8 |
HIGH
Network
|
-
|
-
|
A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects the function formSetPassword of the file /goform/formSetPassword. Executing a manipulation of the argument webpage can…
New
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-10162
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
532
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of t…
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-10166
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
533
|
5.3 |
MEDIUM
Network
|
-
|
-
|
The Advanced Custom Fields (ACF®) plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 6.8.1. This is due to the plugin not properly verifying that a user …
New
|
CWE-862
Missing Authorization
|
CVE-2026-8382
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
534
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in code-projects Visitor Management System 1.0. Affected by this issue is some unknown functionality of the file /vms/php/phone_0.php. This manipulation of the argument phone ca…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10170
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
535
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. Such manipulation of the argument ID leads to …
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10171
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
536
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in Bdtask Multi-Store Inventory Management System 1.0. The affected element is the function Upload of the file application/modules/dashboard/controllers/Module.php…
New
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-10172
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
537
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. This impacts the function sign_auth_cookie of the file appl…
New
|
CWE-287
Improper Authentication
|
CVE-2026-10167
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
538
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected is the function marks of the file appl…
New
|
CWE-99
Resource Injection
|
CVE-2026-10168
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
539
|
3.7 |
LOW
Network
|
-
|
-
|
A vulnerability was detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected by this vulnerability is the function ajax_forgot_pa…
New
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2026-10169
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
540
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in Orthanc Explorer 2 up to 1.12.0. The impacted element is an unknown function of the file WebApplication/src/components/StudyList.vue of the component URL Handler. Th…
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-10173
|
2026-06-2 00:15 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
