5.3

CVSS4.0

CVE-2026-2851 - yeqifu warehouse Inport Endpoint InportController.java deleteInport access control

A vulnerability was determined in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This vulnerability affects the function addInport/updateInport/deleteInport of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\InportController.java of the component Inport En…

πŸ“… Published: Feb. 20, 2026, 5:02 p.m. πŸ”„ Last Modified: April 17, 2026, 5:30 p.m.

5.3

CVSS4.0

CVE-2026-2850 - yeqifu warehouse Customer Endpoint CustomerController.java deleteCustomer access control

A vulnerability was found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addCustomer/updateCustomer/deleteCustomer of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\CustomerController.java of the component Customer Endpoint. P…

πŸ“… Published: Feb. 20, 2026, 5:02 p.m. πŸ”„ Last Modified: April 17, 2026, 5:30 p.m.

8.5

CVSS4.0

CVE-2026-26102 - Incorrect Permission Assignment for Critical Resource in Owl opds

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network request.

πŸ“… Published: Feb. 20, 2026, 4:56 p.m. πŸ”„ Last Modified: April 18, 2026, 11:30 a.m.

8.5

CVSS4.0

CVE-2026-26101 - Incorrect Permission Assignment for Critical Resource in Owl opds

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network request.

πŸ“… Published: Feb. 20, 2026, 4:55 p.m. πŸ”„ Last Modified: April 17, 2026, 5:30 p.m.

6.8

CVSS4.0

CVE-2026-26100 - Incorrect Permission Assignment for Critical Resource in Owl opds

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network request.

πŸ“… Published: Feb. 20, 2026, 4:55 p.m. πŸ”„ Last Modified: April 18, 2026, 11:30 a.m.

5.1

CVSS4.0

CVE-2026-27506 - SVXportal <= 2.5 Profile Update Stored XSS

SVXportal version 2.5 and prior contain a stored cross-site scripting vulnerability in the user profile update workflow (user_settings.php submitting to admin/update_user.php). Authenticated users can store malicious HTML/JavaScript in fields such as Firstname, lastname, email, and image_url, which…

πŸ“… Published: Feb. 20, 2026, 4:55 p.m. πŸ”„ Last Modified: April 17, 2026, 5:30 p.m.

8.4

CVSS4.0

CVE-2026-26099 - Uncontrolled Search Path Element in Owl opds

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via a crafted network request.

πŸ“… Published: Feb. 20, 2026, 4:54 p.m. πŸ”„ Last Modified: April 17, 2026, 5:30 p.m.

8.4

CVSS4.0

CVE-2026-26098 - Uncontrolled Search Path Element in Owl opds

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via a crafted network request.

πŸ“… Published: Feb. 20, 2026, 4:54 p.m. πŸ”„ Last Modified: April 17, 2026, 5:30 p.m.

8.4

CVSS4.0

CVE-2026-26097 - Uncontrolled Search Path Element in Owl opds

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via a crafted network request.

πŸ“… Published: Feb. 20, 2026, 4:53 p.m. πŸ”„ Last Modified: April 17, 2026, 5:30 p.m.

8.5

CVSS4.0

CVE-2026-26096 - Incorrect Permission Assignment for Critical Resource in Owl opds

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network request.

πŸ“… Published: Feb. 20, 2026, 4:52 p.m. πŸ”„ Last Modified: April 17, 2026, 5:30 p.m.
Total resulsts: 349182
Page 1509 of 34,919
Β« previous page Β» next page
Filters