7.2
CVE-2026-5966 - TeamT5|ThreatSonar Anti-Ransomware - Arbitrary File Deletion
ThreatSonar Anti-Ransomware developed by TeamT5 has an Arbitrary File Deletion vulnerability. Authenticated remote attackers with web access can exploit Path Traversal to delete arbitrary files on the system.
9.3
CVE-2026-5964 - Digiwin|EasyFlow .NET - SQL Injection
EasyFlow .NET developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
9.3
CVE-2026-5963 - Digiwin|EasyFlow .NET - SQL Injection
EasyFlow .NET developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
5.3
CVE-2026-6617 - langgenius dify ApiToolManageService api_tools_manage_service.py get_api_tool_provider_remote_schem…
A vulnerability was detected in langgenius dify up to 0.6.9. This vulnerability affects the function get_api_tool_provider_remote_schema of the file api/services/tools/api_tools_manage_service.py of the component ApiToolManageService. Performing a manipulation of the argument url results in server-…
5.3
CVE-2026-6616 - TransformerOptimus SuperAGI WebScraperTool webpage_extractor.py extract_with_lxml server-side reque…
A security vulnerability has been detected in TransformerOptimus SuperAGI up to 0.0.14. This affects the function extract_with_bs4/extract_with_3k/extract_with_lxml of the file superagi/helper/webpage_extractor.py of the component WebScraperTool. Such manipulation leads to server-side request forge…
