CVE-2026-31900

creationtimestamp| type| source ---|---|--- 2026-03-18 00:45:47+00:00| seen| https://bsky.app/profile/crustytldr.bsky.social/post/3mhcb4wx6he2r 2026-04-02 01:00:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/78374 2026-04-02 03:00:05+00:00| published-proof-of-concept|...

CVE-2026-31935

creationtimestamp| type| source ---|---|--- 2026-03-18 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0309/ 2026-03-18 14:15:12+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mhdoeboope2c 2026-03-27 09:25:58+00:00| seen|...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of boundary checks on the linkid parameter in the ieee80211mlreconfiguration function...

PHOENIX CONTACT FL NAT 跨站请求伪造漏洞

PHOENIX CONTACT FL NAT is a series of industrial security gateways developed by PHOENIX CONTACT GmbH in Germany. PHOENIX CONTACT FL NAT has a cross-site request forgeing vulnerability, which originates from the Link Aggregation configuration interface. This vulnerability may allow unverified remo...

Phoenix Contact多款产品 跨站脚本漏洞

PHOENIX CONTACT FL SWITCH and PHOENIX CONTACT FL NAT are products of the German company PHOENIX CONTACT. PHOENIX CONTACT FL SWITCH is an industrial-grade Ethernet switch. PHOENIX CONTACT FL NAT is a series of industrial security gateways. Several products from Phoenix Contact have a cross-site...

PT-2026-26039

A CSRF vulnerability in the Link Aggregation configuration interface allows an unauthenticated remote attacker to trick authenticated users into sending unauthorized POST requests to the device by luring them to a malicious webpage. This can silently alter the device’s configuration without the...

PT-2026-26038

A stored cross‑site scripting XSS vulnerability in the Link Aggregation configuration interface allows an unauthenticated remote attacker to create a trunk entry containing malicious HTML/JavaScript code. When the affected page is viewed, the injected script executes in the context of the victim’...

PT-2026-26025

The CRPaid Link Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the URL path in all versions up to, and including, 0.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts ...

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an approval bypass vulnerability that can be exploited by an attacker to execute commands from an unexpected file system location by rebinding a writable parent symbolic link...

WordPress plugin [CR]Paid Link Manager 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

CVE-2026-31932

creationtimestamp| type| source ---|---|--- 2026-03-18 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0309/ 2026-03-18 14:15:12+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mhdoeboope2c 2026-03-27 09:25:58+00:00| seen|...

CVE-2026-4064

creationtimestamp| type| source ---|---|--- 2026-03-17 21:49:20+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhbxbfezoq2h...

EUVD-2026-12641

Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...

CVE-2026-33057

creationtimestamp| type| source ---|---|--- 2026-03-17 20:58:18+00:00| published-proof-of-concept| https://github.com/mesop-dev/mesop/security/advisories/GHSA-gjgx-rvqr-6w6v 2026-03-20 07:16:11+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-33057 2026-03-...

CVE-2026-2809

Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...

CVE-2026-2809 Endpoint DLP Driver DLL

Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...

CVE-2026-20726

creationtimestamp| type| source ---|---|--- 2026-03-17 19:30:40+00:00| seen| https://infosec.place/objects/5bdcc101-bda7-4b18-b21b-304536505c2e...

CVE-2025-64776

creationtimestamp| type| source ---|---|--- 2026-03-17 19:00:39+00:00| seen| https://infosec.place/objects/946dac59-cc7f-42d7-b268-7000d5f5a896...

CVE-2025-62500

creationtimestamp| type| source ---|---|--- 2026-03-17 19:00:11+00:00| seen| https://infosec.place/objects/4f3190b0-b252-4462-908e-c8ab9a64a8a6...

CVE-2026-28519

creationtimestamp| type| source ---|---|--- 2026-03-17 17:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhbh4h2rtx2u...