Sat, Jul 11 · 02:16 PM CDTCVE-2026-61447
10.0/10 · Must read/watchNVDvuln
Summary
PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent._execute_python() that executes LLM-generated Python code without AST validation, import restrictions, or sandbox enforcement. Attackers can influence LLM output through prompt injection to exfiltrate all environment secrets and execute
CVECVE-2026-61447
SeverityCRITICAL
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sat, Jul 11 · 02:16 PM CDTCVE-2026-61445
9.9/10 · Must read/watchNVDvuln
Summary
PraisonAI before 4.6.78 contains arbitrary file write and command execution vulnerabilities in the AICoder component due to missing path validation and command sanitization in LLM tool calls. Attackers can inject malicious prompts through the chat interface to write files to arbitrary filesystem locations and execute a
CVECVE-2026-61445
SeverityCRITICAL
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sat, Jul 11 · 02:16 PM CDTCVE-2026-60090
9.8/10 · Must read/watchNVDvuln
Summary
PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argument in the PGVector and Cassandra knowledge-store create_collection() backends. Although schema, keyspace, and collection-name identifiers are validated, the dimension value (declared as int but not enforced at runtime) is interpolated direc
CVECVE-2026-60090
SeverityCRITICAL
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sun, Jul 12 · 06:16 AM CDTCVE-2026-15480
8.8/10 · Worth your timeNVDvuln
Summary
A vulnerability was identified in Trendnet TEW-635BRM up to 1.00.03. This affects the function start_httpd of the file /sbin/rc of the component Web Service. Such manipulation of the argument device_name leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and mig
CVECVE-2026-15480
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 06:16 AM CDT
ModifiedSun, Jul 12 · 06:16 AM CDT
Sun, Jul 12 · 06:16 AM CDTCVE-2026-15481
8.8/10 · Worth your timeNVDvuln
Summary
A security flaw has been discovered in Trendnet TEW-635BRM up to 1.00.03. This vulnerability affects the function ipoa_test of the file /sbin/rc of the component IPoA WAN Connection Setup. Performing a manipulation of the argument ipoa_ipaddr results in command injection. The attack is possible to be carried out remote
CVECVE-2026-15481
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 06:16 AM CDT
ModifiedSun, Jul 12 · 06:16 AM CDT
Sun, Jul 12 · 07:16 AM CDTCVE-2026-15483
8.8/10 · Worth your timeNVDvuln
Summary
A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function sub_41EC14 of the file /goform/tools_nslookup of the component ssi. The manipulation of the argument nslookup_target leads to buffer overflow. It is possible to initiate the attack remotely. The vendor explains: "We are
CVECVE-2026-15483
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 07:16 AM CDT
ModifiedSun, Jul 12 · 07:16 AM CDT
Sun, Jul 12 · 07:16 AM CDTCVE-2026-15484
8.8/10 · Worth your timeNVDvuln
Summary
A vulnerability was detected in TRENDnet TEW-821DAP 1.12B01. The affected element is the function sub_41EC14 of the file /goform/tools_nslookup of the component ssi. The manipulation results in buffer overflow. It is possible to launch the attack remotely. The vendor explains: "We are unable to confirm the existence of
CVECVE-2026-15484
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 07:16 AM CDT
ModifiedSun, Jul 12 · 07:16 AM CDT
Sat, Jul 11 · 02:16 PM CDTCVE-2026-61426
8.6/10 · Worth your timeNVDvuln
Summary
PraisonAI before 1.7.3 contains an insecure default configuration that binds to all interfaces with no API key requirement and wildcard CORS. Unauthenticated attackers can call GET /api/agents to read agent instructions and system prompts, or POST /api/chat to invoke agents without authentication.
CVECVE-2026-61426
SeverityHIGH
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sat, Jul 11 · 02:16 PM CDTCVE-2026-61429
8.5/10 · Worth your timeNVDvuln
Summary
PraisonAI versions before 1.6.78 contain a server-side request forgery vulnerability in the Crawl4AI/Chromium backend that allows attackers to bypass SSRF validation by exploiting DNS rebinding and HTTP redirects. Attackers can craft URLs that resolve to internal services after the initial validation check, enabling th
CVECVE-2026-61429
SeverityHIGH
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sat, Jul 11 · 09:16 PM CDTCVE-2026-58281
8.3/10 · Worth your timeNVDvuln
Summary
Deserialization of untrusted data in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
CVECVE-2026-58281
SeverityHIGH
TypeNEW
PublishedSat, Jul 11 · 09:16 PM CDT
ModifiedSat, Jul 11 · 09:16 PM CDT
Sat, Jul 11 · 02:16 PM CDTCVE-2026-56303
7.5/10 · Worth your timeNVDvuln
Summary
Capgo before 12.128.2 contains an information disclosure vulnerability in the find_apikey_by_value PostgreSQL function marked SECURITY DEFINER and executable by the anon role. Unauthenticated attackers can call this function via the /rest/v1/rpc/find_apikey_by_value endpoint to retrieve sensitive API key metadata inclu
CVECVE-2026-56303
SeverityHIGH
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sat, Jul 11 · 02:16 PM CDTCVE-2026-61439
7.5/10 · Worth your timeNVDvuln
Summary
PraisonAI versions before 4.6.78 contain a prompt injection defense misconfiguration where the block threshold defaults to CRITICAL severity, allowing HIGH-level threats to pass through unblocked. Attackers can submit single-vector prompt injection attacks such as instruction overrides or financial manipulation that tr
CVECVE-2026-61439
SeverityHIGH
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sun, Jul 12 · 06:16 AM CDTCVE-2026-15479
7.3/10 · Worth your timeNVDvuln
Summary
A vulnerability was found in H3C NX15 V100R017. Affected by this vulnerability is the function change_passwd of the file /api/login/modify of the component Administrator Password Modification Endpoint. The manipulation of the argument newPass results in weak password recovery. The attack may be launched remotely. The e
CVECVE-2026-15479
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 06:16 AM CDT
ModifiedSun, Jul 12 · 06:16 AM CDT
Sun, Jul 12 · 07:16 AM CDTCVE-2026-15482
7.3/10 · Worth your timeNVDvuln
Summary
A weakness has been identified in Aster Telecom Azcall 10/11. This issue affects some unknown processing of the file /azcall/adm/gestao_loja/sis.php?t=consultar of the component HTTP Handler. Executing a manipulation of the argument nome/perfil/status can lead to sql injection. The attack may be performed from remote.
CVECVE-2026-15482
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 07:16 AM CDT
ModifiedSun, Jul 12 · 07:16 AM CDT
Sun, Jul 12 · 09:16 AM CDTCVE-2026-15488
7.3/10 · Worth your timeNVDvuln
Summary
A vulnerability was determined in hcr707305003 shiroiAdmin 1.1/1.3. Affected is the function FileController::upload of the file app/common/controller/FileController.php. Executing a manipulation of the argument File can lead to unrestricted upload. The attack may be launched remotely. The exploit has been publicly disc
CVECVE-2026-15488
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 09:16 AM CDT
ModifiedSun, Jul 12 · 09:16 AM CDT
Sun, Jul 12 · 09:16 AM CDTCVE-2026-15489
7.3/10 · Worth your timeNVDvuln
Summary
A vulnerability was identified in RafyMrX TOKO-ONLINE-ROTI up to ddfe1cd587be0a0b5135d8b6e85cce2ec3aece99. Affected by this vulnerability is an unknown functionality of the file proses/login.php. The manipulation of the argument Username leads to sql injection. Remote exploitation of the attack is possible. The exploit
CVECVE-2026-15489
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 09:16 AM CDT
ModifiedSun, Jul 12 · 09:16 AM CDT
Sun, Jul 12 · 10:16 AM CDTCVE-2026-15490
7.3/10 · Worth your timeNVDvuln
Summary
A security flaw has been discovered in RafyMrX TOKO-ONLINE-ROTI up to ddfe1cd587be0a0b5135d8b6e85cce2ec3aece99. Affected by this issue is some unknown functionality of the file proses/add.php. The manipulation of the argument kode_produk/kd_cs results in sql injection. The attack can be executed remotely. The exploit h
CVECVE-2026-15490
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 10:16 AM CDT
ModifiedSun, Jul 12 · 10:16 AM CDT
Sun, Jul 12 · 10:16 AM CDTCVE-2026-15491
7.3/10 · Worth your timeNVDvuln
Summary
A weakness has been identified in RafyMrX TOKO-ONLINE-ROTI up to ddfe1cd587be0a0b5135d8b6e85cce2ec3aece99. This affects an unknown part. This manipulation causes missing authentication. The attack is possible to be carried out remotely. This product adopts a rolling release strategy to maintain continuous delivery. The
CVECVE-2026-15491
SeverityHIGH
TypeNEW
PublishedSun, Jul 12 · 10:16 AM CDT
ModifiedSun, Jul 12 · 10:16 AM CDT
Sat, Jul 11 · 02:16 PM CDTCVE-2026-61428
7.3/10 · Worth your timeNVDvuln
Summary
PraisonAI AgentMail versions before 4.6.78 lack signature verification in webhook mode, allowing unauthenticated attackers to inject messages with spoofed sender addresses. Attackers can POST crafted message.received events to the webhook endpoint to inject arbitrary content into the agent and trigger replies to attack
CVECVE-2026-61428
SeverityHIGH
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sat, Jul 11 · 02:16 PM CDTCVE-2026-61442
7.1/10 · Worth your timeNVDvuln
Summary
PraisonAI Platform (praisonai-platform) before 0.1.9 fails to enforce owner/admin authorization on the PATCH routes for projects, issues, and agents, which only require workspace-member role. A workspace member can modify owner-created records; for projects, a member can reassign lead_id to their own user id and then d
CVECVE-2026-61442
SeverityHIGH
TypeNEW
PublishedSat, Jul 11 · 02:16 PM CDT
ModifiedSat, Jul 11 · 02:16 PM CDT
Sat, Jul 11 · 05:16 PM CDTCVE-2026-10660
6.4/10 · Skim only if relevantNVDvuln
Summary
The Bluetooth BAP Broadcast Assistant GATT client in subsys/bluetooth/audio/bap_broadcast_assistant.c reassembled remote Broadcast Receive State data into a single file-static net_buf_simple (att_buf, BT_ATT_MAX_ATTRIBUTE_LEN = 512 bytes) shared by all connection instances, while the BUSY flag, long-read handle, and re
CVECVE-2026-10660
SeverityMEDIUM
TypeNEW
PublishedSat, Jul 11 · 05:16 PM CDT
ModifiedSat, Jul 11 · 05:16 PM CDT
Sun, Jul 12 · 03:16 AM CDTCVE-2026-15473
6.3/10 · Skim only if relevantNVDvuln
Summary
A vulnerability was identified in Eleveo Call Recording Software 9.7.0. This issue affects some unknown processing of the file /callrec/restoreCallAction.do of the component Recorded Calls Page. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly
CVECVE-2026-15473
SeverityMEDIUM
TypeNEW
PublishedSun, Jul 12 · 03:16 AM CDT
ModifiedSun, Jul 12 · 03:16 AM CDT
Sun, Jul 12 · 05:16 AM CDTCVE-2026-15477
6.3/10 · Skim only if relevantNVDvuln
Summary
A vulnerability was detected in Bahmni bahmnicore up to 0.93. This affects the function additionalParams of the file /openmrs/ws/rest/v1/bahmnicore/sql of the component Search Endpoint. Performing a manipulation of the argument test results in sql injection. The attack can be initiated remotely. The exploit is now publ
CVECVE-2026-15477
SeverityMEDIUM
TypeNEW
PublishedSun, Jul 12 · 05:16 AM CDT
ModifiedSun, Jul 12 · 05:16 AM CDT
Sun, Jul 12 · 05:16 AM CDTCVE-2026-15478
6.3/10 · Skim only if relevantNVDvuln
Summary
A flaw has been found in IceHRM up to 35.0.1. This impacts an unknown function of the file core/src/Reports/User/Reports/EmployeeAttendanceReport.php of the component UserReport Endpoint. Executing a manipulation of the argument employeeList can lead to sql injection. The attack can be launched remotely. The exploit ha
CVECVE-2026-15478
SeverityMEDIUM
TypeNEW
PublishedSun, Jul 12 · 05:16 AM CDT
ModifiedSun, Jul 12 · 05:16 AM CDT
Sun, Jul 12 · 08:16 AM CDTCVE-2026-15485
6.3/10 · Skim only if relevantNVDvuln
Summary
A flaw has been found in TRENDnet TEW-821DAP 1.11B03. The impacted element is the function sub_43F2C4 of the file /goform/tools_nslookup of the component DNS Lookup Handler. This manipulation of the argument nslookup_target/dns_server causes os command injection. The attack can be initiated remotely. The vendor explain
CVECVE-2026-15485
SeverityMEDIUM
TypeNEW
PublishedSun, Jul 12 · 08:16 AM CDT
ModifiedSun, Jul 12 · 08:16 AM CDT