cve.li

Recent

CVE-2026-3670CWE-285CWE-266

Freedom Factory dGEN1 com.dgen.alarm improper authorization

Published 2026-03-07 by VulDB

CVE-2026-3669CWE-285CWE-266

Freedom Factory dGEN1 com.dgen.alarm AlarmService improper authorization

Published 2026-03-07 by VulDB

CVE-2026-2671CWE-319CWE-310

Mendi Neurofeedback Headset Bluetooth Low Energy cleartext transmission

Published 2026-03-07 by VulDB

CVE-2026-30861CWE-78

WeKnora: Remote Code Execution (RCE) via Command Injection in MCP Stdio Configuration Validation

Published 2026-03-07 by GitHub_M

CVE-2026-30860CWE-89

WeKnora: Remote Code Execution via SQL Injection Bypass in AI Database Query Tool

Published 2026-03-07 by GitHub_M

CVE-2026-30859CWE-284

WeKnora: Broken Access Control - Cross-Tenant Data Exposure

Published 2026-03-07 by GitHub_M

CVE-2026-30858CWE-918

WeKnora: DNS Rebinding Vulnerability in web_fetch Tool Allows SSRF to Internal Resources

Published 2026-03-07 by GitHub_M

CVE-2026-30857CWE-639

WeKnora: Unauthorized Cross‑Tenant Knowledge Base Cloning

Published 2026-03-07 by GitHub_M

CVE-2026-30856CWE-706

WeKnora: Tool Execution Hijacking via Ambigous Naming Convention In MCP client and Indirect Prompt Injection

Published 2026-03-07 by GitHub_M

CVE-2026-30855CWE-284

WeKnora: Broken Access Control in Tenant Management

Published 2026-03-07 by GitHub_M

Load more ↓