CVE-2026-4181 D-Link DIR-816 goahead form2RepeaterStep2.cgi stack-based overflow

A security flaw has been discovered in D-Link DIR-816 1.10CNB05. This affects an unknown function of the file /goform/form2RepeaterStep2.cgi of the component goahead. The manipulation of the argument key1/key2/key3/key4/pskValue results in stack-based buffer overflow. The attack may be launched...

CVE-2026-4180 D-Link DIR-816 goahead redirect.asp access control

A vulnerability was identified in D-Link DIR-816 1.10CNB05. The impacted element is an unknown function of the file redirect.asp of the component goahead. The manipulation of the argument tokenid leads to improper access controls. The attack may be initiated remotely. The exploit is publicly...

CVE-2026-4180

CVE-2026-4180 affects D-Link DIR-816 with firmware 1.10CNB05. The vulnerable component is the goahead-based file redirect.asp; manipulating the token_id parameter yields improper access controls. The attack can be launched remotely and an exploit is publicly available. This vulnerability impacts ...

CVE-2026-4180 D-Link DIR-816 goahead redirect.asp access control

A vulnerability was identified in D-Link DIR-816 1.10CNB05. The impacted element is an unknown function of the file redirect.asp of the component goahead. The manipulation of the argument tokenid leads to improper access controls. The attack may be initiated remotely. The exploit is publicly...

CVE-2026-32818

creationtimestamp| type| source ---|---|--- 2026-03-15 09:48:08+00:00| published-proof-of-concept| https://github.com/Admidio/admidio/security/advisories/GHSA-g375-5wmp-xr78...

CVE-2026-32812

creationtimestamp| type| source ---|---|--- 2026-03-15 09:44:28+00:00| published-proof-of-concept| https://github.com/Admidio/admidio/security/advisories/GHSA-6j68-gcc3-mq73 2026-05-07 09:52:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlawyv57id2c...

CVE-2026-32755

creationtimestamp| type| source ---|---|--- 2026-03-15 09:44:12+00:00| published-proof-of-concept| https://github.com/Admidio/admidio/security/advisories/GHSA-h8gr-qwr6-m9gx...

PT-2026-25557

D-Link DIR-816 goahead form2WlanBasicSetup.cgi stack-based overflow CVE: CVE-2026-4183 Vendor: D-link Product: DIR-816 CVSS: 9.3 Credits: pjqwudi VulDB User Description: A security vulnerability has been detected in D-Link DIR-816 1.10CNB05. Affected is an unknown function of the file...

PT-2026-25554

A vulnerability was identified in D-Link DIR-816 1.10CNB05. The impacted element is an unknown function of the file redirect.asp of the component goahead. The manipulation of the argument token id leads to improper access controls. The attack may be initiated remotely. The exploit is publicly...

PT-2026-25568

A security vulnerability has been detected in D-Link DIR-823G 1.0.2B05. The affected element is the function...

PT-2026-25569

Name of the Vulnerable Software and Affected Versions D-Link DNS-120 D-Link DNR-202L D-Link DNS-315L D-Link DNS-320 D-Link DNS-320L D-Link DNS-320LW D-Link DNS-321 D-Link DNR-322L D-Link DNS-323 D-Link DNS-325 D-Link DNS-326 D-Link DNS-327L D-Link DNR-326 D-Link DNS-340L D-Link DNS-343 D-Link...

PT-2026-25571

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This impacts the function cgi...

PT-2026-25566

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This issue affects the function UPnP AV Server...

PT-2026-25572

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected is the function RSS Get Update...

PT-2026-25570

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects an unknown function of the file...

CVE-2026-32611

creationtimestamp| type| source ---|---|--- 2026-03-14 14:52:58+00:00| published-proof-of-concept| https://github.com/nicolargo/glances/security/advisories/GHSA-49g7-2ww7-3vf5 2026-03-20 06:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhhtmzyj2g22...

GHSA-7H7G-X2PX-94HJ

creationtimestamp| type| source ---|---|--- 2026-03-14 13:40:06+00:00| seen| https://gist.github.com/alon710/7bac0b52e4dbe7a8f8d19c17daee0b1e 2026-03-29 15:20:39+00:00| seen| Telegram/nb8fCm1TKw7DFYOlnuooYH-uWzxRBf3GinTZz9uDDCr2nY...

BIT-PYTHON-MIN-2025-13462 tarfile: Skip DIRTYPE normalization during GNU LONGNAME/LONGLINK handling

The "tarfile" module would still apply normalization of AREGTYPE \x00 blocks to DIRTYPE, even while processing a multi-block member such as GNUTYPELONGNAME or GNUTYPELONGLINK. This could result in a crafted tar archive being misinterpreted by the tarfile module compared to other implementations...

BIT-LIBPYTHON-2025-13462 tarfile: Skip DIRTYPE normalization during GNU LONGNAME/LONGLINK handling

The "tarfile" module would still apply normalization of AREGTYPE \x00 blocks to DIRTYPE, even while processing a multi-block member such as GNUTYPELONGNAME or GNUTYPELONGLINK. This could result in a crafted tar archive being misinterpreted by the tarfile module compared to other implementations...

CVE-2026-32760

creationtimestamp| type| source ---|---|--- 2026-03-14 08:16:24+00:00| published-proof-of-concept| https://github.com/filebrowser/filebrowser/security/advisories/GHSA-5gg9-5g7w-hm73 2026-03-18 12:55:58+00:00| seen|...