Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
7.5 HIGH
CVE-2026-12198 — Microweber API Endpoint thumbnail_img userfiles_path path traversal

A weakness has been identified in Microweber up to 2.0.20. This affects the function userfiles_path of the file /api_nosession/thumbnail_img of the component API Endpoint. Executing a manipulation of…

microweber | Remote | Path Traversal
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
8.3 HIGH
CVE-2026-12197 — Ruijie EG105G-P JSON-RPC Diagnose Endpoint diagnose nslookup command injection

A security flaw has been discovered in Ruijie EG105G-P 2.340. The impacted element is the function nslookup of the file /cgi-bin/luci/api/diagnose of the component JSON-RPC Diagnose Endpoint. Perform…

eg105g-p | Remote | Injection
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
7.8 HIGH
CVE-2026-12193 — VS Revo RevoUninstaller IOCTL RevoDetector.sys IOCtl_Handler heap-based overflow

A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtl_Handler in the library RevoDetector.sys of the component IOCTL Handler. Such manipula…

revouninstaller | Memory Corruption
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
8.8 HIGH
CVE-2026-12192 — GALAYOU Y4 Web Server buffer overflow

A vulnerability was determined in GALAYOU Y4 1.0.0. Impacted is an unknown function of the component Web Server. This manipulation causes buffer overflow. The attack is only possible within the local…

y4 | Memory Corruption
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
Showing 20 of 8384 Results