CVE-2026-32129

creationtimestamp| type| source ---|---|--- 2026-03-12 19:45:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgv5zn5tmx2e...

GHSA-5HXF-C7J4-279C

creationtimestamp| type| source ---|---|--- 2026-03-12 19:40:05+00:00| seen| https://gist.github.com/alon710/d73d499cf1d6e8d3c3762966f6b93ea2...

CVE-2025-13462

creationtimestamp| type| source ---|---|--- 2026-03-12 19:29:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgv53vv5q22k 2026-03-18 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0315/ 2026-03-19 00:00:00+00:00| seen|...

CVE-2025-70245

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizardSelectMode...

GHSA-92GP-JFGX-9QPV

creationtimestamp| type| source ---|---|--- 2026-03-12 19:10:05+00:00| seen| https://gist.github.com/alon710/81922f2048444626dde8917d1920b821...

EUVD-2026-11655

A command injection vulnerability has been identified in the Telnet command-line interface CLI of TP-Link TL-MR6400 v5.3. This issue is caused by insufficient sanitization of data processed during specific CLI operations. An authenticated attacker with elevated privileges may be able to execute...

CVE-2019-25542

creationtimestamp| type| source ---|---|--- 2026-03-12 18:19:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mguzadqire2u 2026-03-22 02:00:13+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhmh5ou6z32m...

CVE-2026-3841

A command injection vulnerability has been identified in the Telnet command-line interface CLI of TP-Link TL-MR6400 v5.3. This issue is caused by insufficient sanitization of data processed during specific CLI operations. An authenticated attacker with elevated privileges may be able to execute...

CVE-2026-31873

Unhead is a document head and template manager. Prior to 2.1.11, The link.href check in makeTagSafe safe.ts uses String.includes, which is case-sensitive. Browsers treat URI schemes case-insensitively. DATA:text/css,... is the same as data:text/css,... to the browser, but 'DATA:...'.includes'data...

CVE-2025-13462

The "tarfile" module would still apply normalization of AREGTYPE \x00 blocks to DIRTYPE, even while processing a multi-block member such as GNUTYPELONGNAME or GNUTYPELONGLINK. This could result in a crafted tar archive being misinterpreted by the tarfile module compared to other implementations...

CVE-2019-25539

creationtimestamp| type| source ---|---|--- 2026-03-12 18:03:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mguydou5ec2d...

CVE-2026-32139

DataEase is an open-source data visualization tool. In DataEase 2.10.19 and earlier, the static resource upload interface allows SVG uploads. Backend validation only checks that the XML is parseable and that the root node is svg, and does not sanitize active content (e.g., onload/onerror event ha...

CVE-2019-25538

creationtimestamp| type| source ---|---|--- 2026-03-12 17:53:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mguxrryfly2n...

CVE-2019-25528

creationtimestamp| type| source ---|---|--- 2026-03-12 17:40:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgux2h2nll2v 2026-03-19 18:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhgnmxfc362l...

CVE-2026-28356

creationtimestamp| type| source ---|---|--- 2026-03-12 17:31:12+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mguwj7ocuh2c 2026-03-12 20:09:48+00:00| seen| https://bsky.app/profile/linux.activitypub.awakari.com.ap.brid.gy/post/3mgv7eod5rta2 2026-03-13 07:40:05+00:00| seen|...

Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays

Cybersecurity researchers have disclosed details of a new banking malware targeting Brazilian users that's written in Rust, marking a significant departure from other known Delphi-based malware families associated with the Latin American cybercrime ecosystem. The malware, which is designed to...

CVE-2026-3841

A command injection vulnerability has been identified in the Telnet command-line interface CLI of TP-Link TL-MR6400 v5.3. This issue is caused by insufficient sanitization of data processed during specific CLI operations. An authenticated attacker with elevated privileges may be able to execute...

CVE-2026-3841 Command Injection Vulnerability in Telnet CLI on TP-Link TL-MR6400

A command injection vulnerability has been identified in the Telnet command-line interface CLI of TP-Link TL-MR6400 v5.3. This issue is caused by insufficient sanitization of data processed during specific CLI operations. An authenticated attacker with elevated privileges may be able to execute...

CVE-2026-3841 Command Injection Vulnerability in Telnet CLI on TP-Link TL-MR6400

A command injection vulnerability has been identified in the Telnet command-line interface CLI of TP-Link TL-MR6400 v5.3. This issue is caused by insufficient sanitization of data processed during specific CLI operations. An authenticated attacker with elevated privileges may be able to execute...

CVE-2026-3841

CVE-2026-3841 describes a command-injection vulnerability in the Telnet CLI of TP-Link TL-MR6400 (v5.3). The issue arises from insufficient sanitization of data during specific CLI operations. An authenticated attacker with elevated privileges can execute arbitrary system commands, potentially co...