PT-2026-29347

Name of the Vulnerable Software and Affected Versions D-Link DNS-120 D-Link DNR-202L D-Link DNS-315L D-Link DNS-320 D-Link DNS-320L D-Link DNS-320LW D-Link DNS-321 D-Link DNR-322L D-Link DNS-323 D-Link DNS-325 D-Link DNS-326 D-Link DNS-327L D-Link DNR-326 D-Link DNS-340L D-Link DNS-343 D-Link...

PT-2026-29337

Name of the Vulnerable Software and Affected Versions D-Link DNS-120 D-Link DNR-202L D-Link DNS-315L D-Link DNS-320 D-Link DNS-320L D-Link DNS-320LW D-Link DNS-321 D-Link DNR-322L D-Link DNS-323 D-Link DNS-325 D-Link DNS-326 D-Link DNS-327L D-Link DNR-326 D-Link DNS-340L D-Link DNS-343 D-Link...

PT-2026-29422

Name of the Vulnerable Software and Affected Versions ONNX versions prior to 1.21.0 Description ONNX contains a path traversal vulnerability via symlink that allows reading arbitrary files outside the model or user-provided directory. The vulnerability exists because the check for symlinks is...

多款D-Link产品安全漏洞

D-Link DNS-120, etc., are products of D-Link Corporation from China. The D-Link DNS-120 is a network storage adapter. The D-Link DNR-202L is a network video camera. The D-Link DNS-315L is a network attached storage device. Several D-Link products have security vulnerabilities, which stem from...

多款D-Link产品访问控制错误漏洞

D-Link DNS-120, etc., are products of D-Link Corporation from China. The D-Link DNS-120 is a network storage adapter. The D-Link DNR-202L is a network video camera. The D-Link DNS-315L is a network attached storage device. Several D-Link products have a vulnerability related to access control,...

PT-2026-29369

A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. The impacted element is the function...

D-Link多款产品 安全漏洞

D-Link DNS-327L is a product of the Chinese company D-Link. The D-Link DNS-327L is a NAS Network Attached Storage device. The D-Link DNS-340L is also a NAS device. The D-Link DNS-120 is a network storage adapter. Several D-Link products have security vulnerabilities, which stem from incorrect...

D-Link多款产品 安全漏洞

D-Link DNS-320, etc., are products of D-Link Corporation, a Chinese company. The D-Link DNS-320 is a NAS Network Attached Storage device. The D-Link DNS-320L is also a NAS device. The D-Link DNS-120 is a network storage adapter. Several D-Link products have security vulnerabilities, which stem fr...

📄 FreeScout 1.8.206 Remote Code Execution

This Metasploit module exploits an unauthenticated remote code execution vulnerability in FreeScout versions less than or equal to 1.8.206 CVE-2026-28289. The sanitizeUploadedFileName function checks for dot-prefixed filenames before stripping Unicode format characters ZWSP U+200B, allowing...

PT-2026-29285

Name of the Vulnerable Software and Affected Versions Sliver versions prior to 1.7.4 Description Sliver is a command and control framework that utilizes a custom Wireguard netstack. Prior to version 1.7.4, an unauthenticated attacker can gain immediate, silent control over all active C2 sessions ...

CVE-2026-5130

creationtimestamp| type| source ---|---|--- 2026-03-30 23:21:24+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3micshxsmld2x 2026-03-31 00:22:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3micvuomo7x2t 2026-03-31 01:16:25+00:00| published-proof-of-concept|...

CVE-2026-33987

creationtimestamp| type| source ---|---|--- 2026-03-30 23:20:23+00:00| published-proof-of-concept| Telegram/dTdXmSClQuUutduSI7B7lq8U0lWyZCa4SY-4SfXv6kqarNA 2026-03-31 00:06:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3micuxx3kmo25 2026-04-04 11:20:09+00:00| seen|...

CVE-2026-23338

creationtimestamp| type| source ---|---|--- 2026-03-30 22:50:34+00:00| seen| https://gist.github.com/elchinsir/a50bb1cfa4daf45f28b65ae3f0eeb05a...

CVE-2026-33986

creationtimestamp| type| source ---|---|--- 2026-03-30 22:20:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3micp3op2br2m 2026-03-30 23:20:23+00:00| published-proof-of-concept| Telegram/dTdXmSClQuUutduSI7B7lq8U0lWyZCa4SY-4SfXv6kqarNA 2026-03-31 00:13:06+00:00| seen|...

GHSA-2QVQ-RJWJ-GVW9

creationtimestamp| type| source ---|---|--- 2026-03-30 21:51:08+00:00| seen| https://gist.github.com/duard/9050043d2c682a90a7a5815d1d985bac...

CVE-2026-34752

creationtimestamp| type| source ---|---|--- 2026-03-30 21:05:00+00:00| published-proof-of-concept| https://github.com/haraka/Haraka/security/advisories/GHSA-xph3-r2jf-4vp3 2026-04-02 20:45:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mik36k7qxu2q 2026-04-02 22:22:50+00:00| see...

CVE-2026-5126

creationtimestamp| type| source ---|---|--- 2026-03-30 20:30:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miciww6xch22...

CVE-2026-27018

CVE-2026-27018 affects Gotenberg and is a case-insensitive URL-scheme bypass of the prior fix for CVE-2024-21527. The root cause is a case-sensitive deny-list regex in Chromium URL handling, allowing mixed-case or uppercase schemes to bypass the deny-list. The issue has been patched in Gotenberg ...

CVE-2026-31831

creationtimestamp| type| source ---|---|--- 2026-03-30 20:07:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3michmhospv24 2026-03-30 21:21:54+00:00| published-proof-of-concept| Telegram/BUI3SEyOfGtUgM1Z1U1o2mGpepftA8GfZph5NShzoYe3c8...

CVE-2026-35641

creationtimestamp| type| source ---|---|--- 2026-03-30 18:52:09+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-m3mh-3mpg-37hw 2026-04-10 19:30:36+00:00| published-proof-of-concept| Telegram/-hUuw8aTFVWSQYPf3qEKqcT3Zmmt4K4bisrN5sFAqL07rbc 2026-04-11 09:00:08+00:00| seen|...