Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
0.0 NA
CVE-2026-5002 — PromtEngineer localGPT LLM Prompt server.py _route_using_overviews injection

A vulnerability has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. The impacted element is the function _route_using_overviews of the file backend/server.py of t…

| Injection
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
7.5 HIGH
CVE-2026-5001 — PromtEngineer localGPT server.py do_POST unrestricted upload

A flaw has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. The affected element is the function do_POST of the file backend/server.py. This manipulation causes un…

Remote | Misconfiguration
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
7.5 HIGH
CVE-2026-5000 — PromtEngineer localGPT API Endpoint server.py LocalGPTHandler missing authentication

A vulnerability was detected in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. Impacted is the function LocalGPTHandler of the file backend/server.py of the component API Endp…

Remote | Authentication
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
6.5 MEDIUM
CVE-2026-4999 — z-9527 admin isImg Check upload.js uploadFile path traversal

A security vulnerability has been detected in z-9527 admin up to 72aaf2dd05cf4ec2e98f390668b41e128eec5ad2. This issue affects the function uploadFile of the file /server/utils/upload.js of the compon…

Remote | Path Traversal
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
7.5 HIGH
CVE-2026-4998 — Sinaptik AI PandasAI Chat Message code_executor.py CodeExecutor.execute code injection

A weakness has been identified in Sinaptik AI PandasAI up to 3.0.0. This vulnerability affects the function CodeExecutor.execute of the file pandasai/core/code_execution/code_executor.py of the compo…

Remote | Injection
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
5.5 MEDIUM
CVE-2026-4997 — Sinaptik AI PandasAI sql_sanitizer.py is_sql_query_safe path traversal

A security flaw has been discovered in Sinaptik AI PandasAI up to 3.0.0. This affects the function is_sql_query_safe of the file pandasai/helpers/sql_sanitizer.py. Performing a manipulation results i…

Remote | Path Traversal
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
7.5 HIGH
CVE-2026-4996 — Sinaptik AI PandasAI pandasai-lancedb Extension lancedb.py get_relevant_docs_by_id sql in…

A vulnerability was identified in Sinaptik AI PandasAI up to 0.1.4. Affected by this issue is the function delete_question_and_answers/delete_docs/update_question_answer/update_docs/get_relevant_ques…

Remote | Injection
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
5.4 MEDIUM
CVE-2026-2595 — Quads Ads Manager for Google AdSense <= 2.0.98.1 - Authenticated (Contributor+) Stored Cr…

The Quads Ads Manager for Google AdSense plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.0.98.1 due to insufficient input sanitization and output…

Remote | Cross-Site Scripting
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
8.6 HIGH
CVE-2018-25225 — SIPP 3.3 Stack-Based Buffer Overflow via Configuration File

SIPP 3.3 contains a stack-based buffer overflow vulnerability that allows local unauthenticated attackers to execute arbitrary code by supplying malicious input in the configuration file. Attackers c…

| Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
8.6 HIGH
CVE-2018-25224 — PMS 0.42 Stack-Based Buffer Overflow via Configuration File

PMS 0.42 contains a stack-based buffer overflow vulnerability that allows local unauthenticated attackers to execute arbitrary code by supplying malicious values in the configuration file. Attackers …

| Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
9.8 CRITICAL
CVE-2018-25223 — Crashmail 1.6 Stack-based Buffer Overflow Remote Code Execution

Crashmail 1.6 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending malicious input to the application. Attackers can craft payloads w…

Remote | Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
8.6 HIGH
CVE-2018-25222 — SC v7.16 Stack-Based Buffer Overflow Remote Code Execution

SC v7.16 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input that exceeds buffer boundaries. Attackers can craft ma…

| Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
9.8 CRITICAL
CVE-2018-25221 — EChat Server 3.1 Buffer Overflow via chat.ghp username Parameter

EChat Server 3.1 contains a buffer overflow vulnerability in the chat.ghp endpoint that allows remote attackers to execute arbitrary code by supplying an oversized username parameter. Attackers can s…

Remote | Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
9.8 CRITICAL
CVE-2018-25220 — Bochs 2.6-5 Buffer Overflow Remote Code Execution

Bochs 2.6-5 contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying an oversized input string to the application. Attackers can craft a malic…

Remote | Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
9.8 CRITICAL
CVE-2017-20229 — MAWK 1.3.3-17 Stack-Based Buffer Overflow

MAWK 1.3.3-17 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting inadequate boundary checks on user-supplied input. Attackers…

Remote | Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
8.6 HIGH
CVE-2017-20228 — Flat Assembler 1.71.21 Stack-Based Buffer Overflow ROP

Flat Assembler 1.71.21 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input to the application. Attackers can craft …

| Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
9.8 CRITICAL
CVE-2017-20227 — JAD 1.5.8e-1kali1 Stack-Based Buffer Overflow

JAD Java Decompiler 1.5.8e-1kali1 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying overly long input that exceeds buffer bou…

Remote | Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
8.6 HIGH
CVE-2017-20226 — Mapscrn 2.0.3 Stack-Based Buffer Overflow

Mapscrn 2.0.3 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized input buffer. Attackers can craft a malicious buffer…

| Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
9.8 CRITICAL
CVE-2017-20225 — TiEmu 2.08 Stack-Based Buffer Overflow Vulnerability

TiEmu 2.08 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting inadequate boundary checks on user-supplied input. Attackers ca…

Remote | Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
9.8 CRITICAL
CVE-2016-20049 — JAD 1.5.8e-1kali1 Stack-Based Buffer Overflow Remote Code Execution

JAD 1.5.8e-1kali1 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying oversized input that exceeds buffer boundaries. Attackers…

Remote | Memory Corruption
Mar 28, 2026 Mar 28, 2026
Mar 28, 2026
Mar 28, 2026
Showing 20 of 6062 Results