|
1111
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in VectifyAI PageIndex up to f50e52975313c6716c02b20a119577a1929decba. Affected by this vulnerability is the function toc_transformer of the file pageindex/page_in…
New
|
CWE-404
CWE-835
Improper Resource Shutdown or Release
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2026-8318
|
2026-05-14 00:32 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1112
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in omec-project amf up to 2.1.1. This vulnerability affects unknown code of the component NGAP Message Handler. Executing a manipulation can lead to memory corruption. The attac…
New
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-8349
|
2026-05-14 00:32 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1113
|
3.3 |
LOW
Local
|
-
|
-
|
A vulnerability was detected in WebAssembly Binaryen up to 117. This issue affects the function IRBuilder::makeBrOn of the file src/wasm/wasm-ir-builder.cpp of the component BrOn Parser. Performing a…
New
|
CWE-617
Reachable Assertion
|
CVE-2026-8257
|
2026-05-14 00:32 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1114
|
5.3 |
MEDIUM
Local
|
-
|
-
|
A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-bas…
Update
|
CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error')
Heap-based Buffer Overflow
|
CVE-2026-8212
|
2026-05-14 00:31 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1115
|
5.3 |
MEDIUM
Local
|
-
|
-
|
A vulnerability has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this issue is the function GDSDfldsrch of the file frmts/hdf4/hdf-eos/GDapi.c of the component Grid File Handler. The manip…
Update
|
CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error')
Heap-based Buffer Overflow
|
CVE-2026-8213
|
2026-05-14 00:31 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1116
|
6.4 |
MEDIUM
Network
|
-
|
-
|
Filterable Portfolio Gallery 1.0 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious JavaScript by entering payloads in the title field. Attac…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2021-47929
|
2026-05-14 00:30 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1117
|
6.4 |
MEDIUM
Network
|
-
|
-
|
Exponent CMS 2.6 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the Title and Text Block parameters in the text editing e…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2021-47931
|
2026-05-14 00:30 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1118
|
7.5 |
HIGH
Network
|
-
|
-
|
memono Notepad 4.2 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character buffers into note fields. Attackers can generate a p…
Update
|
CWE-789
Memory Allocation with Excessive Size Value
|
CVE-2021-47944
|
2026-05-14 00:30 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1119
|
7.8 |
HIGH
Local
|
-
|
-
|
Argus Surveillance DVR 4.0 contains an unquoted service path vulnerability in the DVRWatchdog service that allows local attackers to escalate privileges by exploiting the service binary path. Attacke…
Update
|
CWE-428
Unquoted Search Path or Element
|
CVE-2021-47945
|
2026-05-14 00:30 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1120
|
6.1 |
MEDIUM
Local
|
-
|
-
|
Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, al…
New
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2026-45222
|
2026-05-14 00:30 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
