CVE-2026-39617

creationtimestamp| type| source ---|---|--- 2026-04-09 17:22:32+00:00| published-proof-of-concept| Telegram/vilnQ64f45V0K93eyMbGXUSRwitUexdwMg6sdyLUCQzylsw...

CVE-2026-39617 WordPress Bluestreet theme <= 1.7.3 - Cross Site Request Forgery (CSRF) to Arbitrary Plugin Installation vulnerability

Cross-Site Request Forgery CSRF vulnerability in priyanshumittal Bluestreet bluestreet allows Cross Site Request Forgery.This issue affects Bluestreet: from n/a through = 1.7.3...

MAL-2025-39617 Malicious code in xenith_drs2r_3gna8_yonder (npm)

The package xenithdrs2r3gna8yonder was found to contain malicious code...

CVE-2023-39617

TOTOLINK X5000RV9.1.0cu.2089B20211224 and X5000RV9.1.0cu.2350B20230313 were discovered to contain a remote code execution RCE vulnerability via the lang parameter in the setLanguageCfg function...

CVE-2023-39617

CVE-2023-39617 affects TOTOLINK X5000R: versions V9.1.0cu.2089_B20211224 through V9.1.0cu.2350_B20230313 are vulnerable to remote code execution via the lang parameter in the setLanguageCfg function. Root cause described as failure to properly filter elements in the constructed snippet, enabling ...

CVE-2023-39617

TOTOLINK X5000RV9.1.0cu.2089B20211224 and X5000RV9.1.0cu.2350B20230313 were discovered to contain a remote code execution RCE vulnerability via the lang parameter in the setLanguageCfg function...

CVE-2021-39617

...

CVE-2021-39617

CVE-2021-39617 is rejected/not used; this entry does not represent an active vulnerability.