Posts of last 24 hours
A vulnerability classified as critical has been found in Microsoft Edge. Impacted is an unknown function. This manipulation causes server-side request forgery.
The identification of this vulnerability is CVE-2026-58278. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
https://vuldb.com/vuln/376250
A vulnerability labeled as problematic has been found in Open5GS up to 2.7.7. Affected by this vulnerability is the function amf_nnrf_handle_nf_discover of the file src/amf/nnrf-handler.c of the component AMF. The manipulation results in denial of service.
This vulnerability is cataloged as CVE-2026-14618. The attack may be launched remotely. Furthermore, there is an exploit available.
It is best practice to apply a patch to resolve this issue.
https://vuldb.com/vuln/376135
A vulnerability was found in SourceCodester Online Boat Reservation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality. Such manipulation leads to session expiration.
This vulnerability is referenced as CVE-2026-14725. It is possible to launch the attack remotely. Furthermore, an exploit is available.
https://vuldb.com/vuln/376311
A vulnerability has been found in AD-Security AD_Miner 1.9.0 and classified as problematic. Affected is the function request_a of the file ad_miner/scripts/analyse_cache.py of the component Cache Handler. This manipulation of the argument sys.argv[1] causes deserialization.
The identification of this vulnerability is CVE-2026-14723. The attack can only be executed locally. There is no exploit available.
The pull request to fix this issue awaits acceptance.
https://vuldb.com/vuln/376310
Submit #847674 / VDB-376311
https://vuldb.com/submit/847674
A vulnerability, which was classified as critical, was found in tiddly-gittly TidGi-Desktop up to 0.13.0. This impacts an unknown function of the file src/services/wiki/wikiWorker/loadWikiTiddlersWithSubWikis.ts of the component Git Repository Import. The manipulation results in code injection.
This vulnerability was named CVE-2026-14722. The attack may be performed from remote. In addition, an exploit is available.
https://vuldb.com/vuln/376309
玩家悼念的或许不是光盘,只是光盘所代表的拥有感。
https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653109816&idx=1&sn=3c17b04f7c3f71d5179f99df8e548afb
Submit #847672 / VDB-376310
https://vuldb.com/submit/847672
A vulnerability, which was classified as critical, has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase_5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buffer overflow.
This vulnerability is uniquely identified as CVE-2026-14721. The attack is possible to be carried out remotely. Moreover, an exploit is present.
https://vuldb.com/vuln/376308
Submit #847648 / VDB-376309
https://vuldb.com/submit/847648