7.3
CVE-2026-4736 - Math Issue in No-Chicken/Echo-Mate
Improper Handling of Values vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/include/net/netfilter modules). This vulnerability is associated with program files nf_tables.Hβ, nft_byteorder.Cβ, nft_meta.Cβ. This issue affects Echo-Mate: before V250329.
8.7
CVE-2026-4735 - A stack overflow and DoS vulnerability in DTStack/chunjun
Deserialization of Untrusted Data vulnerability in DTStack chunjun (βchunjun-core/src/main/java/com/dtstack/chunjun/util modules). This vulnerability is associated with program files GsonUtil.Java. This issue affects chunjun: before 1.16.1.
9.4
CVE-2026-4734 - Heap Buffer Overflow in yoyofr/modizer
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in yoyofr modizer (libs/libopenmpt/openmpt-trunk/include/premake/contrib/curl/lib modules). This vulnerability is associated with program files imap.Cβ. This issue affects modizer: before v4.3.
5.3
CVE-2026-4733 - Information disclosure in ixray-1.6-stcop
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ixray-team ixray-1.6-stcop.This issue affects ixray-1.6-stcop: before 1.3.
8.4
CVE-2026-4732 - Out-of-bounds Read Overflow in tildearrow/furnace
Out-of-bounds Read vulnerability in tildearrow furnace (βextern/libsndfile-modified/src modules). This vulnerability is associated with program files flac.Cβ. This issue affects furnace: before 0.7.
5.1
CVE-2026-4626 - projectworlds Lawyer Management System lawyer_booking.php cross site scripting
A vulnerability has been found in projectworlds Lawyer Management System 1.0. This impacts an unknown function of the file /lawyer_booking.php. The manipulation of the argument Description leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the pubβ¦
6.9
CVE-2026-4625 - SourceCodester Online Admission System programmes.php sql injection
A flaw has been found in SourceCodester Online Admission System 1.0. This affects an unknown function of the file /programmes.php. Executing a manipulation of the argument program can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used.
8.5
CVE-2026-4731 - An Integer Overflow Vulnerability in artraweditor/ART
Integer Overflow or Wraparound vulnerability in artraweditor ART (βrtengineβ modules). This vulnerability is associated with program files dcraw.C. This issue affects ART: before 1.25.12.
6.9
CVE-2026-4624 - SourceCodester Online Library Management System Parameter home.php sql injection
A vulnerability was detected in SourceCodester Online Library Management System 1.0. The impacted element is an unknown function of the file /home.php of the component Parameter Handler. Performing a manipulation of the argument searchField results in sql injection. The attack can be initiated remoβ¦
6.9
CVE-2026-4623 - DefaultFuction Jeson-Customer-Relationship-Management-System API Module System.php server-side requβ¦
A security vulnerability has been detected in DefaultFuction Jeson-Customer-Relationship-Management-System up to 1b4679c4d06b90d31dd521c2b000bfdec5a36e00. This affects an unknown function of the file /api/System.php of the component API Module. The manipulation of the argument url leads to server-sβ¦