Skip to content

Menu
  • Home
Menu

CVE-2026-15511 – Comfast CF-WR631AX V3 FastCGI Backend webmgnt system_wl_upload_pic_file os command injection

Posted on July 13, 2026

CVE ID :CVE-2026-15511 Published : July 12, 2026, 11:16 p.m. | 1 hour, 16 minutes ago Description :A vulnerability was determined in Comfast CF-WR631AX V3 up to 2.7.0.8. Affected by this vulnerability is the…

CVE-2026-10666 – Stack buffer overflow in `net_ipaddr_parse()` IPv4 address-with-port parsing in `subsys/net/ip/utils.c`

Posted on July 13, 2026

CVE ID :CVE-2026-10666 Published : July 12, 2026, 5:16 p.m. | 7 hours, 17 minutes ago Description :parse_ipv4() in subsys/net/ip/utils.c (reached via net_ipaddr_parse() for strings of the form “a.b.c.d:port”) copies the port substring into…

CVE-2026-58596 – Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Posted on July 13, 2026

CVE ID :CVE-2026-58596 Published : July 12, 2026, 4:16 p.m. | 8 hours, 16 minutes ago Description :Untrusted pointer dereference in Microsoft Edge (Chromium-based) allows an unauthorized attacker to elevate privileges over a network….

CVE-2026-61876 – LuCI DHCPv6 Lease Hostname Stored Cross-Site Scripting

Posted on July 13, 2026

CVE ID :CVE-2026-61876 Published : July 12, 2026, 12:16 p.m. | 12 hours, 16 minutes ago Description :LuCI versions fail to properly encode DHCPv6 lease hostnames before rendering in status tables, allowing adjacent network…

CVE-2026-61875 – luci-app-upnp Stored XSS via UPnP Port Mapping Description

Posted on July 13, 2026

CVE ID :CVE-2026-61875 Published : July 12, 2026, 12:16 p.m. | 12 hours, 16 minutes ago Description :luci-app-upnp contains a stored cross-site scripting vulnerability that allows unauthenticated LAN clients to inject JavaScript via UPnP…

CVE-2026-58281 – Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Posted on July 12, 2026

CVE ID :CVE-2026-58281 Published : July 11, 2026, 9:16 p.m. | 3 hours, 16 minutes ago Description :Deserialization of untrusted data in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a…

CVE-2026-61447 – PraisonAI before 1.6.78 Remote Code Execution via CodeAgent

Posted on July 12, 2026

CVE ID :CVE-2026-61447 Published : July 11, 2026, 2:16 p.m. | 10 hours, 16 minutes ago Description :PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent._execute_python() that executes LLM-generated Python code without…

CVE-2026-61445 – PraisonAI before 4.6.78 Arbitrary File Write and Command Execution

Posted on July 12, 2026

CVE ID :CVE-2026-61445 Published : July 11, 2026, 2:16 p.m. | 10 hours, 16 minutes ago Description :PraisonAI before 4.6.78 contains arbitrary file write and command execution vulnerabilities in the AICoder component due to…

CVE-2026-61429 – PraisonAI before 1.6.78 SSRF via Crawl4AI Chromium backend

Posted on July 12, 2026

CVE ID :CVE-2026-61429 Published : July 11, 2026, 2:16 p.m. | 10 hours, 16 minutes ago Description :PraisonAI versions before 1.6.78 contain a server-side request forgery vulnerability in the Crawl4AI/Chromium backend that allows attackers…

CVE-2026-61426 – PraisonAI before 1.7.3 Unauthenticated Agent Access via Insecure Defaults

Posted on July 12, 2026

CVE ID :CVE-2026-61426 Published : July 11, 2026, 2:16 p.m. | 10 hours, 16 minutes ago Description :PraisonAI before 1.7.3 contains an insecure default configuration that binds to all interfaces with no API key…

Posts pagination

1 2 … 110 Next

Site map

  • About Us
  • Privacy Policy
  • Terms & Conditions of Use
©2026 | Design: Newspaperly WordPress Theme