CVE-2026-28532

A flaw was found in FRRouting. An integer overflow vulnerability exists in several OSPF Traffic Engineering and Segment Routing TLV parser functions. An attacker with an established OSPF Open Shortest Path Path First adjacency can send a specially crafted LS Link State Update packet containing a...

CVE-2026-43003

creationtimestamp| type| source ---|---|--- 2026-05-01 11:06:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkrydpe5r42p 2026-05-04 19:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3ml2gb6s2oq2w 2026-06-16 21:42:44+00:00| seen|...

CVE-2026-42402

creationtimestamp| type| source ---|---|--- 2026-05-01 11:01:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkry2qs3kp2n...

CVE-2026-42403

creationtimestamp| type| source ---|---|--- 2026-05-01 10:55:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkrxpyqkym2i...

CVE-2026-40201

creationtimestamp| type| source ---|---|--- 2026-05-01 10:50:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkrxh26lwc2q...

CVE-2026-42404

Apache Neethi does not impose any restrictions on URIs when manually fetching remote policy references through the PolicyReference API. When an application explicitly calls the API to retrieve a policy from a remote URI, an outbound request is made for arbitrary protocols and internal IP...

EUVD-2026-26491

Apache Neethi does not impose any restrictions on URIs when manually fetching remote policy references through the PolicyReference API. When an application explicitly calls the API to retrieve a policy from a remote URI, an outbound request is made for arbitrary protocols and internal IP...

WordPress Internal Link Juicer: SEO Auto Linker for WordPress plugin <= 2.24.6 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Internal Link Juicer: SEO Auto Linker for WordPress versions = 2.24.6...

CVE-2026-7550

creationtimestamp| type| source ---|---|--- 2026-05-01 06:59:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkrkjmcs452q...

CVE-2026-6127

creationtimestamp| type| source ---|---|--- 2026-05-01 06:26:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkriofjyjy2p 2026-05-18 10:33:08+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mm4ofbeehv2l 2026-06-03 23:46:41+00:00| seen|...

CVE-2026-7554

A vulnerability was determined in D-Link M60 up to 1.20B02. Affected by this issue is some unknown functionality of the file /usr/bin/httpd. This manipulation causes weak password recovery. The attack can be initiated remotely. A high degree of complexity is needed for the attack. The exploitatio...

CVE-2024-13362

Multiple plugins and/or themes for WordPress are vulnerable to Reflected Cross-Site Scripting via the url parameter in various versions due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...

CVE-2026-41914

creationtimestamp| type| source ---|---|--- 2026-05-01 06:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mkrhlzzy6h2y...

CVE-2026-7554 D-Link M60 httpd password recovery

A vulnerability was determined in D-Link M60 up to 1.20B02. Affected by this issue is some unknown functionality of the file /usr/bin/httpd. This manipulation causes weak password recovery. The attack can be initiated remotely. A high degree of complexity is needed for the attack. The exploitatio...

CVE-2026-7554

A vulnerability was determined in D-Link M60 up to 1.20B02. Affected by this issue is some unknown functionality of the file /usr/bin/httpd. This manipulation causes weak password recovery. The attack can be initiated remotely. A high degree of complexity is needed for the attack. The exploitatio...

EUVD-2026-26480

A vulnerability was determined in D-Link M60 up to 1.20B02. Affected by this issue is some unknown functionality of the file /usr/bin/httpd. This manipulation causes weak password recovery. The attack can be initiated remotely. A high degree of complexity is needed for the attack. The exploitatio...

CVE-2026-7554 D-Link M60 httpd password recovery

A vulnerability was determined in D-Link M60 up to 1.20B02. Affected by this issue is some unknown functionality of the file /usr/bin/httpd. This manipulation causes weak password recovery. The attack can be initiated remotely. A high degree of complexity is needed for the attack. The exploitatio...

CVE-2026-7554

CVE-2026-7554 affects D-Link M60 firmware up to 1.20B02. The issue involves an unknown functionality in /usr/bin/httpd, which enables weak password recovery. It can be exploited remotely with high attack complexity, and public disclosures indicate the exploit may be used. The CVSS indications in ...

CVE-2026-7548

creationtimestamp| type| source ---|---|--- 2026-05-01 04:21:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkrbon466a2k 2026-05-01 06:11:03+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mkrht2migd2f 2026-05-01 07:30:29+00:00| seen|...

CVE-2026-7545

creationtimestamp| type| source ---|---|--- 2026-05-01 03:05:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkr5hqbsoj2i...