NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-6129	A vulnerability was detected in zhayujie chatgpt-on-wechat CowAgent up to 2.0.4. This affects an unknown function of the component Agent Mode Service....	2026-04-12	7.3	NETWORK	HIGH	NVD
CVE-2026-40396	Varnish Cache 9 before 9.0.1 allows a "workspace overflow" denial of service (daemon panic) after timeout_linger. A malicious client could send an HTT...	2026-04-12	4.0	NETWORK	MEDIUM	NVD
CVE-2026-40395	Varnish Enterprise before 6.0.16r12 allows a "workspace overflow" denial of service (daemon panic) for shared VCL. The headerplus.write_req0() functio...	2026-04-12	4.0	NETWORK	MEDIUM	NVD
CVE-2026-40394	Varnish Cache 9 before 9.0.1 and Varnish Enterprise before 6.0.16r11 allows a "workspace overflow" denial of service (daemon panic) for certain amount...	2026-04-12	4.0	NETWORK	MEDIUM	NVD
CVE-2026-40393	In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an u...	2026-04-12	8.1	NETWORK	HIGH	NVD
CVE-2026-40386	In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote decoding could be used by attackers to crash or leak i...	2026-04-12	4.0	LOCAL	MEDIUM	NVD
CVE-2026-40385	In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or informa...	2026-04-12	4.0	LOCAL	MEDIUM	NVD
CVE-2019-25713	MyT-PM 1.5.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code ...	2026-04-12	7.1	NETWORK	HIGH	NVD
CVE-2019-25712	BlueAuditor 1.7.2.0 contains a buffer overflow vulnerability in the registration key field that allows local attackers to crash the application by sub...	2026-04-12	6.2	LOCAL	MEDIUM	NVD
CVE-2019-25711	SpotFTP Password Recover 2.4.2 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an oversiz...	2026-04-12	6.2	LOCAL	MEDIUM	NVD
CVE-2019-25710	Dolibarr ERP-CRM 8.0.4 contains an SQL injection vulnerability in the rowid parameter of the admin dict.php endpoint that allows attackers to execute ...	2026-04-12	8.2	NETWORK	HIGH	NVD
CVE-2019-25709	CF Image Hosting Script 1.6.5 allows unauthenticated attackers to download and decode the application database by accessing the imgdb.db file in the u...	2026-04-12	9.8	NETWORK	CRITICAL	NVD
CVE-2019-25708	Heatmiser Wifi Thermostat 1.7 contains a cross-site request forgery vulnerability that allows attackers to change administrator credentials by trickin...	2026-04-12	4.3	NETWORK	MEDIUM	NVD
CVE-2019-25707	eBrigade ERP 4.5 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious c...	2026-04-12	7.1	NETWORK	HIGH	NVD
CVE-2019-25706	Across DR-810 contains an unauthenticated file disclosure vulnerability that allows remote attackers to download the rom-0 backup file containing sens...	2026-04-12	7.5	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.