| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-8233 | Dotouch XproUPF access control | Dotouch | XproUPF | Medium | 4.6 | 2026-05-10 05:30:14 | Deep Dive |
| CVE-2026-8232 | Dotouch XproUPF UPF Process libvlib.so vlib_worker_loop denial of service | Dotouch | XproUPF | Low | 3.5 | 2026-05-10 05:15:08 | Deep Dive |
| CVE-2026-8231 | CodeAstro Online Catering Ordering System deleteorder.php sql injection | CodeAstro | Online Catering Ordering System | Medium | 6.3 | 2026-05-10 05:00:15 | Deep Dive |
| CVE-2026-7263 | DoS attack via DOMNode::C14N() | PHP Group | PHP | - | - | 2026-05-10 04:43:04 | Deep Dive |
| CVE-2026-6104 | Global buffer over-read in mb_convert_encoding() with attacker-supplied encoding | PHP Group | PHP | - | - | 2026-05-10 04:35:17 | Deep Dive |
| CVE-2026-8230 | Wavlink NU516U1 login.cgi sys_login1 os command injection | Wavlink | NU516U1 | Medium | 6.3 | 2026-05-10 04:30:09 | Deep Dive |
| CVE-2026-7258 | Out-of-bounds read in urldecode() on NetBSD | PHP Group | PHP | - | - | 2026-05-10 04:28:15 | Deep Dive |
| CVE-2026-6722 | Use-After-Free in SOAP using Apache map | PHP Group | PHP | - | - | 2026-05-10 04:19:15 | Deep Dive |
| CVE-2026-8229 | Wavlink NU516U1 wireless.cgi WifiBasic os command injection | Wavlink | NU516U1 | Medium | 6.3 | 2026-05-10 04:15:10 | Deep Dive |
| CVE-2026-7259 | Null pointer dereference in php_mb_check_encoding() via mb_ereg_search_init() | PHP Group | PHP | - | - | 2026-05-10 04:13:27 | Deep Dive |
| CVE-2026-7261 | SoapServer session-persisted object use-after-free via SOAP header fault | PHP Group | PHP | - | - | 2026-05-10 04:07:25 | Deep Dive |
| CVE-2026-7262 | NULL pointer dereference in SOAP apache:Map decoder with missing <value> | PHP Group | PHP | - | - | 2026-05-10 04:00:09 | Deep Dive |
| CVE-2026-8228 | Wavlink NU516U1 wireless.cgi advance os command injection | Wavlink | NU516U1 | Medium | 6.3 | 2026-05-10 04:00:09 | Deep Dive |
| CVE-2025-14179 | SQL injection in pdo_firebird via NUL bytes in quoted strings | PHP Group | PHP | - | - | 2026-05-10 03:51:15 | Deep Dive |
| CVE-2026-8227 | Wavlink NU516U1 adm.cgi wzdapMesh os command injection | Wavlink | NU516U1 | Medium | 6.3 | 2026-05-10 03:45:09 | Deep Dive |
| CVE-2026-7568 | Signed integer overflow in metaphone() | PHP Group | PHP | - | - | 2026-05-10 03:42:36 | Deep Dive |
| CVE-2026-8226 | Open5GS types.c ogs_pcc_rule_install_flow_from_media denial of service | - | Open5GS | Medium | 5.3 | 2026-05-10 03:30:10 | Deep Dive |
| CVE-2026-6735 | XSS within PHP-FPM status endpoint | PHP Group | PHP | - | - | 2026-05-10 03:27:01 | Deep Dive |
| CVE-2026-8225 | Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_handle_delete denial of service | - | Open5GS | Medium | 5.3 | 2026-05-10 03:15:09 | Deep Dive |
| CVE-2026-8224 | Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of service | - | Open5GS | Medium | 5.3 | 2026-05-10 03:00:11 | Deep Dive |