CVE-2025-70246

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formVirtualServ...

CVE-2025-70244

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formWlanSetup...

CVE-2025-70251

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formWlanGuestSetup...

CVE-2026-2273

creationtimestamp| type| source ---|---|--- 2026-03-10 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0254/ 2026-03-19 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-078-03...

CVE-2025-70246

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formVirtualServ...

IBM Trusteer Rapport 代码问题漏洞

IBM Trusteer Rapport is a terminal security software developed by IBM Corporation, designed to protect browser sessions. Version 3.5.2309.290 of IBM Trusteer Rapport contains a code vulnerability. This vulnerability stems from an uncontrolled search path element in the DLL, which may allow local...

CVE-2025-70247

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizard1...

PT-2026-24240

Name of the Vulnerable Software and Affected Versions FortiSwitchAXFixed versions 1.0.0 through 1.0.1 Description A buffer copy issue exists where the size of the input is not checked, potentially allowing an unauthenticated attacker on the same network to execute code or commands on the device...

PT-2026-24400

Name of the Vulnerable Software and Affected Versions D-Link DIR-513 version 1.10 Description A stack buffer overflow condition exists in D-Link DIR-513 version 1.10. This issue is triggered through the webPage parameter within the ''/goform/formWlanGuestSetup'' endpoint. Recommendations Update t...

PT-2026-24409

Name of the Vulnerable Software and Affected Versions D-Link DIR-513 version 1.10 Description A stack buffer overflow condition exists in the D-Link DIR-513 version 1.10. This issue is triggered by providing a crafted input to the webPage parameter within the '/goform/formSetWanPPTP' endpoint. Th...

CVE-2026-27685

creationtimestamp| type| source ---|---|--- 2026-03-10 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0256/ 2026-03-10 01:30:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116202289801188286 2026-03-10 14:56:21+00:00| seen|...

D-Link DIR-513 安全漏洞

The D-Link DIR-513 is a wireless router product from the D-Link company. The D-Link DIR-513 v1.10 version has a security vulnerability, which stems from a stack buffer overflow in the curTime parameter of the goform/formSetWizard2 function...

PT-2026-24434

LinkAce is a self-hosted archive to collect website links. When a user creates a link via POST /links, the server fetches HTML metadata from the provided URL LinkRepository::create calls HtmlMeta::getFromUrl. The LinkStoreRequest validation rules do not include NoPrivateIpRule, allowing server-si...

D-Link DIR-513 安全漏洞

The D-Link DIR-513 is a wireless router product from the D-Link company. The D-Link DIR-513 v1.10 version has a security vulnerability, which stems from a stack buffer overflow in the webPage parameters of the goform/formWlanSetup module...

CVE-2026-30916

...

CVE-2026-30916

CVE-2026-30916 relates to the Shescape JavaScript library. Prior to version 2.1.9, an attacker could bypass shell escaping when the configured shell pointed to a file that is a chain of symlinks, potentially exposing sensitive information depending on the shell used. A fix is available in 2.1.9. ...

CVE-2026-28512

Technical details for CVE-2026-28512 are not provided in the supplied documents; only the high-level description is present. Monitor for official updates and vendor advisories for affected products and fixes.

GHSA-9Q2P-VC84-2RWM

creationtimestamp| type| source ---|---|--- 2026-03-09 22:10:06+00:00| seen| https://gist.github.com/alon710/c9b7b8cb1e830c7075cb4162b8d49b80...

CVE-2026-31802

node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar npm can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x...

GHSA-93FX-5QGC-WR38

creationtimestamp| type| source ---|---|--- 2026-03-09 20:10:06+00:00| seen| https://gist.github.com/alon710/56622a5fb0d29db6ad09ba417d4e4cd3...