Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

956 matches found

Positive Technologies
Positive Technologiesadded 2026/03/20 12:0 a.m.1 views

PT-2026-26536

A flaw has been found in D-Link DIR-513 1.10. The impacted element is an unknown function of the file /goform/formSysCmd. Executing a manipulation of the argument sysCmd can lead to os command injection. The attack may be launched remotely. The exploit has been published and may be used. This...

6.5CVSS6.4AI score0.00099EPSS
Exploits1References7
ATTACKERKB
ATTACKERKBadded 2026/03/18 1:2 a.m.0 views

CVE-2026-4356

A flaw has been found in itsourcecode University Management System 1.0. Affected is an unknown function of the file /addresult.php. Executing a manipulation of the argument vr can lead to cross site scripting. The attack may be launched remotely. The exploit has been published and may be used...

4.8CVSS4AI score0.00041EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/18 12:0 a.m.2 views

PT-2026-26001

A flaw has been found in itsourcecode University Management System 1.0. Affected is an unknown function of the file /add result.php. Executing a manipulation of the argument vr can lead to cross site scripting. The attack may be launched remotely. The exploit has been published and may be used...

4.8CVSS4AI score0.00041EPSS
Exploits0References9
EUVD
EUVDadded 2026/03/16 3:30 p.m.1 views

EUVD-2026-12353

A flaw has been found in INDEX Conferences & Exhibitions Organization YWF BPOF APGCS App up to 1.0.2 on Android. Affected by this vulnerability is an unknown functionality of the file com/index/event/BuildConfig.java of the component ae.index.apgcs. Executing a manipulation of the argument...

4.8CVSS5.3AI score0.00014EPSS
Exploits0References5
EUVD
EUVDadded 2026/03/16 3:30 p.m.1 views

EUVD-2026-12262

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects an unknown function of the file...

6.5CVSS5.5AI score0.00109EPSS
Exploits1References6
NVD
NVDadded 2026/03/16 2:20 p.m.1 views

CVE-2026-4204

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. The affected element is the function...

9.8CVSS0.00109EPSS
Exploits1References5
NVD
NVDadded 2026/03/16 2:20 p.m.1 views

CVE-2026-4195

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects an unknown function of the file...

9.8CVSS0.00109EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2026/03/16 12:0 a.m.3 views

PT-2026-25618

A flaw has been found in INDEX Conferences & Exhibitions Organization YWF BPOF APGCS App up to 1.0.2 on Android. Affected by this vulnerability is an unknown functionality of the file com/index/event/BuildConfig.java of the component ae.index.apgcs. Executing a manipulation of the argument ACCESS...

4.8CVSS5.3AI score0.00014EPSS
Exploits0References4
CVE
CVEadded 2026/03/15 11:2 p.m.9 views

CVE-2026-4195

CVE-2026-4195 describes a remote command-injection flaw in multiple D-Link NAS/routers (e.g., DNS-120, DNS-320 series, DNS-1550-04, etc.) via manipulation of the file path /cgi-bin/wizard_mgr.cgi. The affected function is unknown, but exploitation allows arbitrary commands to be executed with net...

9.8CVSS6.3AI score0.00109EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/15 3:2 a.m.0 views

CVE-2026-4164

A flaw has been found in Wavlink WL-WN578W2 221110. Impacted is the function DeleteMaclist/SetName/GuestWifi of the file /cgi-bin/wireless.cgi of the component POST Request Handler. Executing a manipulation can lead to command injection. It is possible to launch the attack remotely. The exploit h...

10CVSS5.5AI score0.0024EPSS
Exploits0References8Affected Software1
Cvelist
Cvelistadded 2026/03/12 4:2 p.m.26 views

CVE-2026-4045 projectsend Auth.php response discrepancy

A flaw has been found in projectsend up to r1945. This impacts an unknown function of the file includes/Classes/Auth.php. Executing a manipulation of the argument ldapemail can lead to observable response discrepancy. The attack can be executed remotely. A high complexity level is associated with...

6.3CVSS0.00043EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/03/12 4:2 p.m.0 views

CVE-2026-4045

A flaw has been found in projectsend up to r1945. This impacts an unknown function of the file includes/Classes/Auth.php. Executing a manipulation of the argument ldapemail can lead to observable response discrepancy. The attack can be executed remotely. A high complexity level is associated with...

6.3CVSS5.2AI score0.00043EPSS
Exploits0References4
OSV
OSVadded 2026/03/12 4:16 a.m.2 views

UBUNTU-CVE-2026-3979

A flaw has been found in quickjs-ng quickjs up to 0.12.1. This affects the function jsiteratorconcatreturn of the file quickjs.c. This manipulation causes use after free. The attack requires local access. The exploit has been published and may be used. Patch name:...

5.3CVSS5.3AI score0.00019EPSS
Exploits0References2
EUVD
EUVDadded 2026/03/12 3:31 a.m.2 views

EUVD-2026-11497

A flaw has been found in Tenda i3 1.0.0.62204. Affected is the function formwrlSSIDget of the file /goform/wifiSSIDget. Executing a manipulation of the argument index can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been published and may be used...

9CVSS6.4AI score0.00106EPSS
Exploits1References6
NVD
NVDadded 2026/03/12 1:15 a.m.1 views

CVE-2026-3970

A flaw has been found in Tenda i3 1.0.0.62204. Affected is the function formwrlSSIDget of the file /goform/wifiSSIDget. Executing a manipulation of the argument index can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been published and may be used...

9CVSS0.00106EPSS
Exploits1References5
CVE
CVEadded 2026/03/12 1:2 a.m.6 views

CVE-2026-3970

CVE-2026-3970 affects Tenda i3 1.0.0.6(2204). The vulnerability is in the function formwrlSSIDget of the file /goform/wifiSSIDget, where manipulation of the argument index can trigger a stack-based buffer overflow . It can be exploited remotely, and a working exploit has been published. The provi...

9CVSS6.4AI score0.00106EPSS
Exploits1References5Affected Software1
EUVD
EUVDadded 2026/03/12 12:31 a.m.0 views

EUVD-2026-11492

A flaw has been found in Alfresco Activiti up to 7.19/8.8.0. Affected by this issue is the function deserialize/createObjectInputStream of the file activiti-core/activiti-engine/src/main/java/org/activiti/engine/impl/variable/SerializableType.java of the component Process Variable Serialization...

6.5CVSS5.4AI score0.0006EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/03/12 12:0 a.m.1 views

PT-2026-24898

A flaw has been found in Alfresco Activiti up to 7.19/8.8.0. Affected by this issue is the function deserialize/createObjectInputStream of the file activiti-core/activiti-engine/src/main/java/org/activiti/engine/impl/variable/SerializableType.java of the component Process Variable Serialization...

6.5CVSS5.4AI score0.0006EPSS
Exploits0References5
EUVD
EUVDadded 2026/03/11 9:31 p.m.2 views

EUVD-2026-11405

A flaw has been found in xierongwkhd weimai-wetapp up to 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2. This vulnerability affects the function getLikeMovieList of the file source-code/src/main/java/com/moke/wp/wxweimai/controller/HomeController.java of the component Endpoint. Executing a manipulation...

5.8CVSS5.7AI score0.00049EPSS
Exploits0References7
NVD
NVDadded 2026/03/11 9:16 p.m.1 views

CVE-2026-3957

A flaw has been found in xierongwkhd weimai-wetapp up to 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2. This vulnerability affects the function getLikeMovieList of the file source-code/src/main/java/com/moke/wp/wxweimai/controller/HomeController.java of the component Endpoint. Executing a manipulation...

5.8CVSS0.00049EPSS
Exploits0References6
Rows per page
Query Builder