|
1011
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
smb: server: make use of smbdirect_socket.send_io.bcredits
It turns out that our code will corrupt the stream of
reassabled data …
|
NVD-CWE-noinfo
|
CVE-2026-31537
|
2026-04-29 04:09 |
2026-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1012
|
5.4 |
MEDIUM
Network
|
pretalx
|
pretalx
|
pretalx is a conference planning tool. Prior to 2026.1.0, The organiser search in the pretalx backend rendered submission titles, speaker display names, and user names/emails into the result dropdown…
|
CWE-79
Cross-site Scripting
|
CVE-2026-41241
|
2026-04-29 04:07 |
2026-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1013
|
8.1 |
HIGH
Network
|
senselive
|
x3500_firmware
|
A vulnerability exists in SenseLive X3050’s web management interface in which password updates are not reliably applied due to improper handling of credential changes on the backend. After the device…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2026-39462
|
2026-04-29 04:04 |
2026-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1014
|
8.1 |
HIGH
Network
|
projectcontour
|
contour
|
Contour is a Kubernetes ingress controller using Envoy proxy. From v1.19.0 to before v1.33.4, v1.32.5, and v1.31.6, Contour's Cookie Rewriting feature is vulnerable to Lua code injection. An attacker…
|
CWE-94
Code Injection
|
CVE-2026-41246
|
2026-04-29 04:04 |
2026-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1015
|
8.1 |
HIGH
Network
|
senselive
|
x3500_firmware
|
A vulnerability in SenseLive X3050's web management interface allows critical system and network configuration parameters to be modified without sufficient validation and safety controls. Due to inad…
|
CWE-862
Missing Authorization
|
CVE-2026-40623
|
2026-04-29 04:02 |
2026-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1016
|
9.8 |
CRITICAL
Network
|
senselive
|
x3500_firmware
|
A vulnerability in
SenseLive
X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network acc…
|
CWE-288
Authentication Bypass Using an Alternate Path or Channel
|
CVE-2026-40630
|
2026-04-29 04:01 |
2026-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1017
|
9.8 |
CRITICAL
Network
|
huggingface
|
lerobot
|
LeRobot through 0.5.1 contains an unsafe deserialization vulnerability in the async inference pipeline where pickle.loads() is used to deserialize data received over unauthenticated gRPC channels wit…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-25874
|
2026-04-29 04:01 |
2026-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1018
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
smb: server: make use of smbdirect_socket.recv_io.credits.available
The logic off managing recv credits by counting posted recv_i…
|
NVD-CWE-Other
|
CVE-2026-31538
|
2026-04-29 03:59 |
2026-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1019
|
9.8 |
CRITICAL
Network
|
std42
|
elfinder
|
elFinder is an open-source file manager for web, written in JavaScript using jQuery UI. Prior to 2.1.67, elFinder contains a command injection vulnerability in the resize command. The bg (background …
|
CWE-78
OS Command
|
CVE-2026-41247
|
2026-04-29 03:57 |
2026-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1020
|
5.3 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 contains a replay detection bypass vulnerability in webhook signature handling that treats Base64 and Base64URL encoded signatures as distinct requests. Attackers can re-enc…
|
CWE-294
Authentication Bypass by Capture-replay
|
CVE-2026-41351
|
2026-04-29 03:56 |
2026-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
