CVE-2026-5313

creationtimestamp| type| source ---|---|--- 2026-04-01 22:23:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihq72s3bw2g...

CVE-2026-34569

creationtimestamp| type| source ---|---|--- 2026-04-01 22:07:37+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-fhrf-q333-82fm 2026-04-01 22:11:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihpidpv7n23 2026-04-01 23:28:03+00:00| seen|...

CVE-2026-34568

creationtimestamp| type| source ---|---|--- 2026-04-01 22:07:13+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-x7wh-g25g-53vg 2026-04-01 22:27:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihqezueu32j 2026-04-01 23:27:52+00:00| seen|...

CVE-2026-34566

creationtimestamp| type| source ---|---|--- 2026-04-01 22:06:28+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-458r-h248-29c5 2026-04-01 22:31:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihqlqrjev23 2026-04-01 23:27:52+00:00| seen|...

CVE-2026-34563

creationtimestamp| type| source ---|---|--- 2026-04-01 22:04:21+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-85m8-g393-jcxf 2026-04-01 22:09:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihpeqx5ps2j 2026-04-01 23:27:43+00:00| seen|...

CVE-2026-34565

creationtimestamp| type| source ---|---|--- 2026-04-01 22:03:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihp3acpql2i 2026-04-01 22:05:45+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-xgh5-w62m-8mpr 2026-04-01 23:27:52+00:00| seen|...

CVE-2026-34562

creationtimestamp| type| source ---|---|--- 2026-04-01 22:03:39+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-v897-c6vq-6cr3 2026-04-01 22:03:39+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-v897-c6vq-6cr3 2026-04-01 22:07:19+00:00| seen|...

CVE-2026-35187

creationtimestamp| type| source ---|---|--- 2026-04-01 21:50:38+00:00| published-proof-of-concept| https://github.com/pyload/pyload/security/advisories/GHSA-2wvg-62qm-gj33 2026-04-06 21:21:26+00:00| published-proof-of-concept| Telegram/xKxKUYX0BRejEqYlrURXsjCQY9BctYcoeewNmSMWqY7riM 2026-04-07...

EUVD-2026-18069

A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected by this vulnerability is the...

EUVD-2026-18023

A security flaw has been discovered in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected is the function...

CVE-2026-5312

A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected by this vulnerability is the...

CVE-2026-34875

creationtimestamp| type| source ---|---|--- 2026-04-01 21:15:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihme55qqg25 2026-04-02 05:26:24+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miihsin2yo2w 2026-04-07 12:00:14+00:00| seen|...

UNIX Symbolic Link (Symlink) Following

Overview onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to UNIX Symbolic Link Symlink Following via the onnx.load function. An attacker can access arbitrary files on the filesystem by supplying a malicious model that leverages hardlinks to bypass security...

CVE-2026-34456

creationtimestamp| type| source ---|---|--- 2026-04-01 21:10:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihm36pb7h24 2026-04-01 23:27:18+00:00| seen| Telegram/bl6LC3S0UxxO5vDfC3lE4LaBC6ObKrhuhRcx8XqwmK5Cxg 2026-04-02 04:02:26+00:00| seen|...

AVideo: Stored SSRF via Video EPG Link Missing isSSRFSafeURL() Validation

Summary The EPG Electronic Program Guide link feature in AVideo allows authenticated users with upload permissions to store arbitrary URLs that the server fetches on every EPG page visit. The URL is validated only with PHP's FILTERVALIDATEURL, which accepts internal network addresses. Although...

Server-side Request Forgery (SSRF)

Overview wwbn/avideo is an Audio and Video Platform or simply "A Video Platform". Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the EPG link processing, which fails to properly validate URLs using the intended isSSRFSafeURL function. An attacker can caus...

GHSA-X5VX-VRPF-R45F AVideo: Stored SSRF via Video EPG Link Missing isSSRFSafeURL() Validation

Summary The EPG Electronic Program Guide link feature in AVideo allows authenticated users with upload permissions to store arbitrary URLs that the server fetches on every EPG page visit. The URL is validated only with PHP's FILTERVALIDATEURL, which accepts internal network addresses. Although...

CVE-2026-34748

creationtimestamp| type| source ---|---|--- 2026-04-01 21:00:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihljbpvno2g 2026-04-01 23:27:18+00:00| seen| Telegram/bl6LC3S0UxxO5vDfC3lE4LaBC6ObKrhuhRcx8XqwmK5Cxg 2026-04-02 04:01:01+00:00| seen|...

CVE-2026-34236

creationtimestamp| type| source ---|---|--- 2026-04-01 20:47:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihkrw5hex2o 2026-04-02 06:00:42+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miijpsj6q32s 2026-04-03 17:26:14+00:00| published-proof-of-concept|...

CVE-2026-3831

creationtimestamp| type| source ---|---|--- 2026-04-01 20:45:05+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mihkodgmvj2e...