Aggregator

CVE-2026-27508 | Smoothwall Express up to 3.1 Update 12 Parameter /redirect.cgi url cross site scripting

VulDB Recent Entries
7 hours 33 minutes ago
A vulnerability, which was classified as problematic, has been found in Smoothwall Express up to 3.1 Update 12. This issue affects some unknown processing of the file /redirect.cgi of the component Parameter Handler. The manipulation of the argument url leads to cross site scripting. This vulnerability is referenced as CVE-2026-27508. Remote exploitation of the attack is possible. No exploit is available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2026-26352 | Smoothwall Express up to 3.1 Update 12 /cgi-bin/vpnmain.cgi VPN_IP cross site scripting

VulDB Recent Entries
7 hours 33 minutes ago
A vulnerability classified as problematic was found in Smoothwall Express up to 3.1 Update 12. This vulnerability affects unknown code of the file /cgi-bin/vpnmain.cgi. Executing a manipulation of the argument VPN_IP can lead to cross site scripting. The identification of this vulnerability is CVE-2026-26352. The attack may be launched remotely. There is no exploit available. It is best practice to apply a patch to resolve this issue.
vuldb.com

CVE-2026-29909 | MRCMS 3.1.2 File Management /admin/file/list.do information disclosure

VulDB Recent Entries
7 hours 34 minutes ago
A vulnerability described as problematic has been identified in MRCMS 3.1.2. Affected by this issue is some unknown functionality of the file /admin/file/list.do of the component File Management Module. Such manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2026-29909. The attack can be launched remotely. No exploit exists.
vuldb.com

CVE-2026-34472 | ZTE ZXHN H188A 6.0.10P2_TE/6.0.10P3N3_TE Wizard Interface information disclosure

VulDB Recent Entries
7 hours 37 minutes ago
A vulnerability marked as problematic has been reported in ZTE ZXHN H188A 6.0.10P2_TE/6.0.10P3N3_TE. Affected by this vulnerability is an unknown functionality of the component Wizard Interface. This manipulation causes information disclosure. This vulnerability is handled as CVE-2026-34472. The attack can only be done within the local network. There is not any exploit available.
vuldb.com

CVE-2026-30561 | SourceCodester Sales and Inventory System 1.0 Parameter add_purchase.php msg cross site scripting

VulDB Recent Entries
7 hours 41 minutes ago
A vulnerability identified as problematic has been detected in SourceCodester Sales and Inventory System 1.0. This impacts an unknown function of the file add_purchase.php of the component Parameter Handler. The manipulation of the argument msg leads to cross site scripting. This vulnerability is traded as CVE-2026-30561. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

CVE-2026-30559 | SourceCodester Sales and Inventory System 1.0 Parameter add_sales.php msg cross site scripting

VulDB Recent Entries
7 hours 41 minutes ago
A vulnerability categorized as problematic has been discovered in SourceCodester Sales and Inventory System 1.0. This affects an unknown function of the file add_sales.php of the component Parameter Handler. Executing a manipulation of the argument msg can lead to cross site scripting. This vulnerability appears as CVE-2026-30559. The attack may be performed from remote. There is no available exploit.
vuldb.com

CVE-2026-30558 | SourceCodester Sales and Inventory System 1.0 Parameter add_customer.php msg cross site scripting

VulDB Recent Entries
7 hours 42 minutes ago
A vulnerability was found in SourceCodester Sales and Inventory System 1.0. It has been rated as problematic. The impacted element is an unknown function of the file add_customer.php of the component Parameter Handler. Performing a manipulation of the argument msg results in cross site scripting. This vulnerability is reported as CVE-2026-30558. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com

CVE-2026-30562 | SourceCodester Sales and Inventory System 1.0 Parameter add_stock.php msg cross site scripting

VulDB Recent Entries
7 hours 43 minutes ago
A vulnerability was found in SourceCodester Sales and Inventory System 1.0. It has been declared as problematic. The affected element is an unknown function of the file add_stock.php of the component Parameter Handler. Such manipulation of the argument msg leads to cross site scripting. This vulnerability is documented as CVE-2026-30562. The attack can be executed remotely. There is not any exploit available.
vuldb.com

CVE-2026-30560 | SourceCodester Sales and Inventory System 1.0 Parameter add_supplier.php msg cross site scripting

VulDB Recent Entries
7 hours 43 minutes ago
A vulnerability was found in SourceCodester Sales and Inventory System 1.0. It has been classified as problematic. Impacted is an unknown function of the file add_supplier.php of the component Parameter Handler. This manipulation of the argument msg causes cross site scripting. This vulnerability is registered as CVE-2026-30560. Remote exploitation of the attack is possible. No exploit is available.
vuldb.com

CVE-2026-29954 | KubePlus 4.1.4 webhook/kubeconfiggenerator ResourceComposition chartURL injection

VulDB Recent Entries
7 hours 43 minutes ago
A vulnerability was found in KubePlus 4.1.4 and classified as problematic. This issue affects the function ResourceComposition of the component webhook/kubeconfiggenerator. The manipulation of the argument chartURL results in injection. This vulnerability is cataloged as CVE-2026-29954. The attack may be launched remotely. There is no exploit available.
vuldb.com

CVE-2026-30556 | SourceCodester Sales and Inventory System 1.0 Parameter index.php msg cross site scripting

VulDB Recent Entries
7 hours 43 minutes ago
A vulnerability, which was classified as problematic, was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file index.php of the component Parameter Handler. Executing a manipulation of the argument msg can lead to cross site scripting. This vulnerability is tracked as CVE-2026-30556. The attack can be launched remotely. No exploit exists.
vuldb.com

CVE-2026-30557 | SourceCodester Sales and Inventory System 1.0 Parameter add_category.php msg cross site scripting

VulDB Recent Entries
7 hours 43 minutes ago
A vulnerability, which was classified as problematic, has been found in SourceCodester Sales and Inventory System 1.0. Affected by this issue is some unknown functionality of the file add_category.php of the component Parameter Handler. Performing a manipulation of the argument msg results in cross site scripting. This vulnerability is identified as CVE-2026-30557. The attack can be initiated remotely. There is not any exploit available.
vuldb.com

What the FBI Director Breach Reveals About Executive Digital Exposure

Security Boulevard
8 hours 49 minutes ago

Iranian state-linked hackers published emails stolen from FBI Director Kash Patel’s personal account. The lesson for every security leader: no title protects you from an exposed digital footprint. On March 27, 2026, the Handala Hack Team, a group U.S. prosecutors have formally tied to Iran’s Ministry of Intelligence and Security, announced it had breached FBI […]

The post What the FBI Director Breach Reveals About Executive Digital Exposure appeared first on Security Boulevard.

Christine Castro

Managed ad