Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

61155 matches found

Circl
Circladded 2026/04/26 12:51 p.m.5 views

CVE-2026-7030

creationtimestamp| type| source ---|---|--- 2026-04-26 12:51:15+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mkflu2lplo2w 2026-04-30 18:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mkqb27wzhk2o...

9CVSS8.1AI score0.00632EPSS
Exploits1References2
NVD
NVDadded 2026/04/26 9:16 a.m.4 views

CVE-2026-7027

A vulnerability was identified in D-Link DSL-2740R EU01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and...

4.8CVSS0.00433EPSS
Exploits0References4
NVD
NVDadded 2026/04/26 8:16 a.m.4 views

CVE-2026-7026

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

6.8CVSS0.00556EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/26 8:15 a.m.29 views

CVE-2026-7027 D-Link DSL-2740R Wireless Setup Section cross site scripting

A vulnerability was identified in D-Link DSL-2740R EU01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and...

4.8CVSS0.00433EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/26 8:15 a.m.2 views

CVE-2026-7027 D-Link DSL-2740R Wireless Setup Section cross site scripting

A vulnerability was identified in D-Link DSL-2740R EU01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and...

4.8CVSS3.1AI score0.00433EPSS
Exploits0References4
CVE
CVEadded 2026/04/26 8:15 a.m.9 views

CVE-2026-7027

A vulnerability identified in D-Link DSL-2740R EU_01.15 affects the Wireless Setup Section. The issue arises from manipulating the Wireless Network Name, causing cross-site scripting (XSS). The attack can be executed remotely, and a public exploit is available. Affected component: Wireless Setup ...

4.8CVSS3.1AI score0.00433EPSS
Exploits0References4Affected Software1
EUVD
EUVDadded 2026/04/26 8:15 a.m.2 views

EUVD-2026-25702

A vulnerability was identified in D-Link DSL-2740R EU01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and...

4.8CVSS2.9AI score0.00433EPSS
Exploits0References4
Microsoft CVE
Microsoft CVEadded 2026/04/26 8:7 a.m.3 views

nfc: llcp: add missing return after LLCP_CLOSED checks

...

8.8CVSS5.8AI score0.00224EPSS
Exploits0
CVE
CVEadded 2026/04/26 7:15 a.m.7 views

CVE-2026-7026

The CVE concerns D-Link DGS-3420 firmware 1.50.018 with a cross-site scripting vulnerability in the System Information Settings Page, caused by manipulation of the System Name argument. The issue allows remote exploitation and the exploit has been publicly disclosed. Supported metrics indicate CV...

6.8CVSS3.8AI score0.00556EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/04/26 7:15 a.m.31 views

CVE-2026-7026 D-Link DGS-3420 System Information Settings cross site scripting

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

6.8CVSS0.00556EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/26 7:15 a.m.1 views

CVE-2026-7026 D-Link DGS-3420 System Information Settings cross site scripting

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

6.8CVSS3.7AI score0.00556EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/26 7:0 a.m.2 views

CVE-2026-7025 Typecho Ping Back Service Endpoint Service.php sendPingHandle server-side request forgery

A vulnerability was found in Typecho up to 1.3.0. This vulnerability affects the function Service::sendPingHandle of the file var/Widget/Service.php of the component Ping Back Service Endpoint. The manipulation of the argument X-Pingback/link results in server-side request forgery. The attack may...

7.5CVSS7AI score0.00278EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/26 7:0 a.m.34 views

CVE-2026-7025 Typecho Ping Back Service Endpoint Service.php sendPingHandle server-side request forgery

A vulnerability was found in Typecho up to 1.3.0. This vulnerability affects the function Service::sendPingHandle of the file var/Widget/Service.php of the component Ping Back Service Endpoint. The manipulation of the argument X-Pingback/link results in server-side request forgery. The attack may...

7.5CVSS0.00278EPSS
Exploits0References4
CVE
CVEadded 2026/04/26 7:0 a.m.11 views

CVE-2026-7025

Typecho up to 1.3.0 is affected by a server-side request forgery in the Ping Back Service Endpoint: the function Service::sendPingHandle (var/Widget/Service.php). The X-Pingback/link parameter manipulation triggers SSRF, enabling remote access. Exploit publicly available; vendor not responsive to...

7.5CVSS7AI score0.00278EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/04/26 12:0 a.m.4 views

D-Link DSL-2740R 跨站脚本漏洞

The D-Link DSL-2740R is a high-performance ADSL router from D-Link Corporation. The D-Link DSL-2740R EU01.15 version has a cross-site scripting vulnerability. This vulnerability stems from improper handling of the Wireless Network Name parameter by the Wireless Setup Section component, which may...

4.8CVSS5.6AI score0.00433EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/04/26 12:0 a.m.2 views

PT-2026-35229

A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping of the file upnpsoap.c of the component miniupnpd. Performing a manipulation of the argument NewPortMappingDescription results in buffer overflow. The attack needs to be approached within...

8.6CVSS8.1AI score0.01384EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2026/04/26 12:0 a.m.3 views

PT-2026-35207

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

6.8CVSS3.7AI score0.00556EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/04/26 12:0 a.m.7 views

D-Link DGS-3420 跨站脚本漏洞

The D-Link DGS-3420 is a managed Gigabit Ethernet switch designed for enterprise networks by D-Link Corporation. The version 1.50.018 of the D-Link DGS-3420 contains a cross-site scripting vulnerability. This vulnerability arises from improper handling of the System Name parameter in the System...

6.8CVSS5.6AI score0.00556EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/04/26 12:0 a.m.8 views

PT-2026-35274

Name of the Vulnerable Software and Affected Versions D-Link DIR-822 A 101 Description A command injection issue exists in the udhcpd DHCP Service within the system function of the /udhcpcd/dhcpd.c file. A remote attacker can exploit this by manipulating the Hostname argument to execute arbitrary...

7.5CVSS7.8AI score0.02476EPSS
Exploits1References12
Positive Technologies
Positive Technologiesadded 2026/04/26 12:0 a.m.4 views

PT-2026-35228

A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBD process of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. The attack can only be initiated within the local network. The exploit is publicly available and might be used...

8.8CVSS8.5AI score0.01871EPSS
Exploits1References7
Rows per page
Query Builder