|
3961
|
7.2 |
HIGH
Network
|
-
|
-
|
DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-10072
|
2026-05-30 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3962
|
7.5 |
HIGH
Network
|
-
|
-
|
DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversal to download arbitrary system files.
|
CWE-23
Relative Path Traversal
|
CVE-2026-10073
|
2026-05-30 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3963
|
4.9 |
MEDIUM
Network
|
-
|
-
|
DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to download arbitrary system files.
|
CWE-23
Relative Path Traversal
|
CVE-2026-10074
|
2026-05-30 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3964
|
5.3 |
MEDIUM
Network
|
-
|
-
|
DreamMaker developed by Interinfo has a Path Traversal vulnerability, allowing unauthenticated remote attackers to read file names under arbitrary path by exploiting an Absolute Path Traversal vulner…
|
CWE-36
Absolute Path Traversal
|
CVE-2026-10075
|
2026-05-30 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3965
|
4.6 |
MEDIUM
Physics
|
-
|
-
|
Expected behavior violation in the in-vehicle network of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the motorcycle's anti-theft shutdown b…
|
CWE-440
CWE-693
CWE-754
Expected Behavior Violation
Protection Mechanism Failure
Improper Check for Unusual or Exceptional Conditions
|
CVE-2026-49316
|
2026-05-30 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3966
|
2.4 |
LOW
Physics
|
-
|
-
|
Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. T…
|
CWE-636
CWE-696
CWE-754
Not Failing Securely ('Failing Open')
Incorrect Behavior Order
Improper Check for Unusual or Exceptional Conditions
|
CVE-2026-49317
|
2026-05-30 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3967
|
2.4 |
LOW
Physics
|
-
|
-
|
Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. T…
|
CWE-636
CWE-696
CWE-754
Not Failing Securely ('Failing Open')
Incorrect Behavior Order
Improper Check for Unusual or Exceptional Conditions
|
CVE-2026-49318
|
2026-05-30 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3968
|
4.6 |
MEDIUM
Physics
|
-
|
-
|
Improper handling of physical conditions in the bike-shutdown control of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows a physical attacker with access to the Wireless Control Modul…
|
CWE-693
CWE-754
CWE-1384
Protection Mechanism Failure
Improper Check for Unusual or Exceptional Conditions
|
CVE-2026-49325
|
2026-05-30 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3969
|
- |
|
-
|
-
|
RabbitMQ is a messaging and streaming broker. From 4.2.0 to before 4.2.4, RabbitMQ's MQTT plugin allows for topic-level authorization using regular expressions with variable substitution. Administrat…
|
CWE-863
Incorrect Authorization
|
CVE-2026-44838
|
2026-05-30 00:06 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3970
|
- |
|
-
|
-
|
RabbitMQ is a messaging and streaming broker. From 3.7.0 to before 4.1.2 and 4.0.13, This vulnerability is fixed in 4.1.2 and 4.0.13.
|
CWE-80
Basic XSS
|
CVE-2026-44839
|
2026-05-30 00:06 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
