0x5t4l1n/CVE

mirror of https://github.com/0x5t4l1n/CVE.git synced 2026-05-26 11:25:49 +00:00

T

Stalin 2b13a75467 Create CVE-2026-30081.md

2026-05-19 16:32:39 +05:30

.github/workflows

feat: add workflow and script to auto-update README when CVE files change

2026-05-01 18:37:03 +00:00

Update CVE-2026-44720.md

2026-05-08 13:15:38 +05:30

Create CVE-2026-30081.md

2026-05-19 16:32:39 +05:30

feat: add workflow and script to auto-update README when CVE files change

2026-05-01 18:37:03 +00:00

README.md

docs: auto-update README CVE tables

2026-05-12 13:00:17 +00:00

README.md

CVE Research

A collection of CVE disclosures and security patches by Stalin S.

Reported — vulnerabilities discovered and reported by Stalin S.
Patched — security issues where Stalin S coordinated and applied the fix.

Reported

CVEs that were discovered and reported by Stalin S.

CVE	Description	Severity
CVE-2026-29905	Kirby CMS Persistent DoS via Malformed Image Upload	Medium
CVE-2026-41037	Missing Rate Limiting (Quantum Networks Router)	High (8.7)
CVE-2026-41039	Information Disclosure (Quantum Networks Router)	High (8.7)
CVE-2026-42290	protobufjs `pbts` Command Injection via Unsanitized File Paths	High
CVE-2026-45152	uniget Command Injection via Unsafe `tool.Check` Execution	High

Patched

CVEs where Stalin S fixed the security issue.

CVE	Description	Severity
CVE-2026-32138	API Key Exposure (Nexulean Website)	High
CVE-2026-41575	DOM-Based XSS (IP Reputation Checker)	Moderate
CVE-2026-41900	RCE via Sandbox Escape (OpenLearnX)	High
CVE-2026-44720	Authentication Bypass via JWT Signature Verification Disabled (OpenLearnX)	Moderate