Aggregator

CVE-2026-8269 | Open5GS up to 2.7.7 SMF smf_nsmf_handle_create_sm_context denial of service (Issue 4450)

VulDB Recent Entries
5 days 5 hours ago
A vulnerability was found in Open5GS up to 2.7.7. It has been rated as problematic. Impacted is the function smf_nsmf_handle_create_sm_context of the component SMF. Performing a manipulation results in denial of service. This vulnerability is known as CVE-2026-8269. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-8268 | Open5GS up to 2.7.7 SMF OpenAPI_list_create denial of service (Issue 4449)

VulDB Recent Entries
5 days 5 hours ago
A vulnerability was found in Open5GS up to 2.7.7. It has been declared as problematic. This issue affects the function OpenAPI_list_create of the component SMF. Such manipulation leads to denial of service. This vulnerability is traded as CVE-2026-8268. The attack may be launched remotely. Furthermore, there is an exploit available. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-8267 | Open5GS up to 2.7.7 SMF smf_nsmf_handle_created_data_in_vsmf denial of service (Issue 4448)

VulDB Recent Entries
5 days 5 hours ago
A vulnerability was found in Open5GS up to 2.7.7. It has been classified as problematic. This vulnerability affects the function smf_nsmf_handle_created_data_in_vsmf of the component SMF. This manipulation causes denial of service. This vulnerability appears as CVE-2026-8267. The attack may be initiated remotely. In addition, an exploit is available. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-8266 | Open5GS up to 2.7.7 SMF /src/smf/gsm-build.c gsm_build_pdu_session_establishment_accept denial of service (Issue 4447)

VulDB Recent Entries
5 days 5 hours ago
A vulnerability was found in Open5GS up to 2.7.7 and classified as problematic. This affects the function gsm_build_pdu_session_establishment_accept of the file /src/smf/gsm-build.c of the component SMF. The manipulation results in denial of service. This vulnerability is reported as CVE-2026-8266. The attack can be launched remotely. Moreover, an exploit is present. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-8265 | Tenda AC6 15.03.06.23 httpd /goform/getLogFile get_log_file wans.flag os command injection

VulDB Recent Entries
5 days 5 hours ago
A vulnerability has been found in Tenda AC6 15.03.06.23 and classified as critical. Affected by this issue is the function get_log_file of the file /goform/getLogFile of the component httpd. The manipulation of the argument wans.flag leads to os command injection. This vulnerability is documented as CVE-2026-8265. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com

CVE-2026-8264 | Tenda AC6 15.03.06.23 httpd /goform/WifiApScan formWifiApScan wl2g.public.country/wl5g.public.country os command injection

VulDB Recent Entries
5 days 5 hours ago
A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.06.23. Affected by this vulnerability is the function formWifiApScan of the file /goform/WifiApScan of the component httpd. Executing a manipulation of the argument wl2g.public.country/wl5g.public.country can lead to os command injection. This vulnerability is registered as CVE-2026-8264. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com

CVE-2026-8263 | Tenda AC6 15.03.06.49_multi_TDE01 httpd /goform/WifiExtraSet fromSetWirelessRepeat mac/ssid os command injection

VulDB Recent Entries
5 days 5 hours ago
A vulnerability, which was classified as critical, has been found in Tenda AC6 15.03.06.49_multi_TDE01. Affected is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet of the component httpd. Performing a manipulation of the argument mac/ssid results in os command injection. This vulnerability is cataloged as CVE-2026-8263. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2026-8262 | Devs Palace ERP Online up to 4.0.0 /accounts/chart-save cross site scripting

VulDB Recent Entries
5 days 5 hours ago
A vulnerability classified as problematic was found in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /accounts/chart-save. Such manipulation leads to cross site scripting. This vulnerability is listed as CVE-2026-8262. The attack may be performed from remote. In addition, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2026-8261 | Squirrel up to 3.2 squirrel/sqobject.cpp SQFunctionProto::Load heap-based overflow (Issue 326)

VulDB Recent Entries
5 days 5 hours ago
A vulnerability classified as critical has been found in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. This vulnerability is tracked as CVE-2026-8261. The attack is restricted to local execution. Moreover, an exploit is present. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

Managed ad