Common Vulnerabilities and Exposures (CVE)

CVE-2026-15530

Jul 13, 2026 04:00:08 UTC

A flaw has been found in WuzhiCMS up to 4.1.0. Affected by this vulnerability is the function config/listimage of the file /index.php?m=attachment&f=index&v=upload of the component Attachment API. Executing a manipulation can lead to inform...

CVE-2026-15529

Jul 13, 2026 03:45:08 UTC

A vulnerability was detected in yzhao062 pyod 3.5.0/3.5.1/3.5.2. Affected is the function pyod.utils.persistence.load of the file pyod/utils/persistence.py. Performing a manipulation of the argument path results in deserialization. The atta...

CVE-2026-9492

Jul 13, 2026 03:45:02 UTC

The MBStorage DRAM lighting control module within Gigabyte Control Center (GCC) developed by GIGABYTE Technology has an Improper Access Control vulnerability. Authenticated local attackers can send specific IOCTL commands through the driver...

CVE-2026-15528

Jul 13, 2026 03:15:09 UTC

A vulnerability was found in lamaalrajih kicad-mcp up to 3.3.1. This issue affects some unknown processing of the file kicad_mcp/utils/path_validator.py. Performing a manipulation of the argument project_path/schematic_path results in prote...

CVE-2026-15553

Jul 13, 2026 03:10:37 UTC

Enterprise Cloud Database developed by Ragic has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload malicious files and make them available for users to download.

CVE-2026-15527

Jul 13, 2026 03:00:08 UTC

A vulnerability has been found in better-auth better-icons up to 1.0.5. This vulnerability affects unknown code of the component scan_project_icons/sync_icon. Such manipulation of the argument icons_file leads to path traversal. An attack h...

CVE-2026-15552

Jul 13, 2026 02:45:09 UTC

Enterprise Cloud Database developed by Ragic has a Stored Cross-Site Scripting vulnerability, allowing unauthenticated remote attackers to inject persistent JavaScript code executed in users' browsers upon page load.

CVE-2026-15526

Jul 13, 2026 02:45:08 UTC

A flaw has been found in augmnt augments-mcp-server 7.1.0. This issue affects the function scanProjectDeps of the file src/tools/v4/scan-project-deps.ts of the component scan_project_deps. Executing a manipulation of the argument packageJso...

CVE-2026-7162

Jul 13, 2026 02:42:00 UTC

Successful exploitation of the integer overflow vulnerability could allow an attacker to achieve system-level access to the affected software.

CVE-2026-15525

Jul 13, 2026 02:30:09 UTC

A vulnerability was detected in kLOsk adloop up to 0.9.0. This vulnerability affects the function _validate_urls of the file src/adloop/ads/write.py. Performing a manipulation of the argument final_url results in server-side request forgery...

CVE-2026-15524

Jul 13, 2026 02:15:08 UTC

A security vulnerability has been detected in alioshr memory-bank-mcp up to 0.2.1/3.1. This affects an unknown part of the file list-project-files-validation-factory.ts. Such manipulation of the argument projectName leads to path traversal....

CVE-2026-15523

Jul 13, 2026 02:00:07 UTC

A weakness has been identified in CodeAstro Simple Online Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /SimpleOnlineLeave/admin/dashboard.php. This manipulation of the argument Name causes sq...

CVE-2026-15522

Jul 13, 2026 01:45:11 UTC

A security flaw has been discovered in tugcantopaloglu godot-mcp 2.0.0. Affected by this vulnerability is the function validatePath of the file build/index.js of the component run_project. The manipulation of the argument projectPath result...

CVE-2026-15521

Jul 13, 2026 01:30:09 UTC

A vulnerability was identified in makafeli n8n-workflow-builder up to 0.11.0. Affected is an unknown function of the file build/server.cjs of the component update_node_from_file. The manipulation of the argument filePath leads to path trave...

CVE-2026-15520

Jul 13, 2026 01:15:16 UTC

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompress_R2004_section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based b...