π¨ CVE-2026-5830
A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysToolChangePwd. Such manipulation of the argument oldPwd/newPwd/cfmPwd leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
π@cveNotify
A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysToolChangePwd. Such manipulation of the argument oldPwd/newPwd/cfmPwd leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
π@cveNotify
π¨ CVE-2026-5979
A vulnerability was detected in D-Link DIR-605L 2.13B01. Affected by this vulnerability is the function formVirtualServ of the file /goform/formVirtualServ of the component POST Request Handler. The manipulation of the argument curTime results in buffer overflow. The attack can be launched remotely. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
π@cveNotify
A vulnerability was detected in D-Link DIR-605L 2.13B01. Affected by this vulnerability is the function formVirtualServ of the file /goform/formVirtualServ of the component POST Request Handler. The manipulation of the argument curTime results in buffer overflow. The attack can be launched remotely. The exploit is now public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
π@cveNotify
lavender-bicycle-a5a on Notion
D-Link-DIR-605L-formVirtualServ | Notion
Overview
π¨ CVE-2026-5980
A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /goform/formSetMACFilter of the component POST Request Handler. This manipulation of the argument curTime causes buffer overflow. The attack may be initiated remotely. The exploit has been published and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
π@cveNotify
A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /goform/formSetMACFilter of the component POST Request Handler. This manipulation of the argument curTime causes buffer overflow. The attack may be initiated remotely. The exploit has been published and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
π@cveNotify
lavender-bicycle-a5a on Notion
D-Link-DIR-605L-formSetMACFilter | Notion
Overview
π¨ CVE-2025-54236
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input Validation vulnerability. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality, and integrity impact to high. Exploitation of this issue does not require user interaction.
π@cveNotify
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input Validation vulnerability. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality, and integrity impact to high. Exploitation of this issue does not require user interaction.
π@cveNotify
Adobe
Adobe Security Bulletin
Security Updates Available for Adobe Commerce | APSB25-88
π¨ CVE-2026-2339
Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows Remote Code Inclusion, Privilege Abuse, Command Injection.This issue affects Liderahenk: before 3.5.1.
π@cveNotify
Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows Remote Code Inclusion, Privilege Abuse, Command Injection.This issue affects Liderahenk: before 3.5.1.
π@cveNotify
π¨ CVE-2026-4731
Integer Overflow or Wraparound vulnerability in artraweditor ART (rtengine modules). This vulnerability is associated with program files dcraw.C.
This issue affects ART: before 1.25.12.
π@cveNotify
Integer Overflow or Wraparound vulnerability in artraweditor ART (rtengine modules). This vulnerability is associated with program files dcraw.C.
This issue affects ART: before 1.25.12.
π@cveNotify
GitHub
Potential Vulnerability in Cloned Code by tabudz Β· Pull Request #427 Β· artraweditor/ART
Summary
Our tool detected a potential vulnerability in rtengine/dcraw.c which was cloned from LibRaw/LibRaw but did not receive the security patch applied. The original issue was reported and fixed...
Our tool detected a potential vulnerability in rtengine/dcraw.c which was cloned from LibRaw/LibRaw but did not receive the security patch applied. The original issue was reported and fixed...
π¨ CVE-2026-4732
Out-of-bounds Read vulnerability in tildearrow furnace (extern/libsndfile-modified/src modules). This vulnerability is associated with program files flac.C.
This issue affects furnace: before 0.7.
π@cveNotify
Out-of-bounds Read vulnerability in tildearrow furnace (extern/libsndfile-modified/src modules). This vulnerability is associated with program files flac.C.
This issue affects furnace: before 0.7.
π@cveNotify
GitHub
Potential Vulnerability in Cloned Code by pr-hung Β· Pull Request #2812 Β· tildearrow/furnace
Summary
This PR fixes a potential security vulnerability in cloned code that appears to have missed an upstream security patch.
Details
Affected file: extern/libsndfile-modified/src/flac.c
Upstrea...
This PR fixes a potential security vulnerability in cloned code that appears to have missed an upstream security patch.
Details
Affected file: extern/libsndfile-modified/src/flac.c
Upstrea...
π¨ CVE-2026-4733
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ixray-team ixray-1.6-stcop.This issue affects ixray-1.6-stcop: before 1.3.
π@cveNotify
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ixray-team ixray-1.6-stcop.This issue affects ixray-1.6-stcop: before 1.3.
π@cveNotify
GitHub
Potential Vulnerability in Cloned Code by tabudz Β· Pull Request #259 Β· ixray-team/ixray-1.6-stcop
Summary
Our tool detected a potential vulnerability in src/3rd-party/crypto/openssl/src/tasn_dec.c which was cloned from openssl/openssl but did not receive the security patch applied. The original...
Our tool detected a potential vulnerability in src/3rd-party/crypto/openssl/src/tasn_dec.c which was cloned from openssl/openssl but did not receive the security patch applied. The original...
π¨ CVE-2026-4734
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in yoyofr modizer (libs/libopenmpt/openmpt-trunk/include/premake/contrib/curl/lib modules). This vulnerability is associated with program files imap.C.
This issue affects modizer: before v4.3.
π@cveNotify
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in yoyofr modizer (libs/libopenmpt/openmpt-trunk/include/premake/contrib/curl/lib modules). This vulnerability is associated with program files imap.C.
This issue affects modizer: before v4.3.
π@cveNotify
GitHub
Fix potential vulnerability in cloned code by manh-td Β· Pull Request #141 Β· yoyofr/modizer
This PR fixes a potential security vulnerability in imap_state_fetch_resp that was cloned from curl/curl but did not receive the security patch.
Vulnerability Details:
Affected Function: imap_stat...
Vulnerability Details:
Affected Function: imap_stat...
π¨ CVE-2026-4735
Deserialization of Untrusted Data vulnerability in DTStack chunjun (chunjun-core/src/main/java/com/dtstack/chunjun/util modules). This vulnerability is associated with program files GsonUtil.Java.
This issue affects chunjun: before 1.16.1.
π@cveNotify
Deserialization of Untrusted Data vulnerability in DTStack chunjun (chunjun-core/src/main/java/com/dtstack/chunjun/util modules). This vulnerability is associated with program files GsonUtil.Java.
This issue affects chunjun: before 1.16.1.
π@cveNotify
GitHub
fix(sec): fix JSON parsing stack overflow vulnerabilities by scyt01 Β· Pull Request #1939 Β· DTStack/chunjun
Purpose of this pull request
This PR addresses a potential vulnerability in the read() function in chunjun-core/src/main/java/com/dtstack/chunjun/util/GsonUtil.java sourced from DTStack/chunjun th...
This PR addresses a potential vulnerability in the read() function in chunjun-core/src/main/java/com/dtstack/chunjun/util/GsonUtil.java sourced from DTStack/chunjun th...
π¨ CVE-2026-4736
Improper Handling of Values vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/include/net/netfilter modules). This vulnerability is associated with program files nf_tables.H, nft_byteorder.C, nft_meta.C.
This issue affects Echo-Mate: before V250329.
π@cveNotify
Improper Handling of Values vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/include/net/netfilter modules). This vulnerability is associated with program files nf_tables.H, nft_byteorder.C, nft_meta.C.
This issue affects Echo-Mate: before V250329.
π@cveNotify
GitHub
Fix potential vulnerability in cloned code by manh-td Β· Pull Request #8 Β· No-Chicken/Echo-Mate
This PR fixes a potential security vulnerability in nft_byteorder_eval() that was cloned from torvalds/linux but did not receive the security patch.
Details:
Affected Function: nft_byteorder_eval()...
Details:
Affected Function: nft_byteorder_eval()...
π¨ CVE-2026-4737
Use After Free vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/mm modules). This vulnerability is associated with program files rmap.C.
This issue affects Echo-Mate: before V250329.
π@cveNotify
Use After Free vulnerability in No-Chicken Echo-Mate (SDK/rv1106-sdk/sysdrv/source/kernel/mm modules). This vulnerability is associated with program files rmap.C.
This issue affects Echo-Mate: before V250329.
π@cveNotify
GitHub
Fix potential vulnerability in cloned code by manh-td Β· Pull Request #9 Β· No-Chicken/Echo-Mate
This PR fixes a potential security vulnerability in anon_vma->degree that was cloned from torvalds/linux but did not receive the security patch.
Details:
Affected Function: anon_vma->...
Details:
Affected Function: anon_vma->...
π¨ CVE-2026-4741
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in TeamJCD JoyConDroid (app/src/main/java/com/rdapps/gamepad/util modules). This vulnerability is associated with program files UnzipUtil.Java.
This issue affects JoyConDroid: through 1.0.93.
π@cveNotify
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in TeamJCD JoyConDroid (app/src/main/java/com/rdapps/gamepad/util modules). This vulnerability is associated with program files UnzipUtil.Java.
This issue affects JoyConDroid: through 1.0.93.
π@cveNotify
GitHub
Fix Zip Slip Vulnerability in UnzipUtil by simei2k Β· Pull Request #124 Β· TeamJCD/JoyConDroid
Description
This PR addresses a critical Zip Slip vulnerability (CWE-22: Path Traversal) in the UnzipUtil file that could allow malicious zip archives to write files outside the intended extraction...
This PR addresses a critical Zip Slip vulnerability (CWE-22: Path Traversal) in the UnzipUtil file that could allow malicious zip archives to write files outside the intended extraction...
π¨ CVE-2026-5841
A weakness has been identified in Tenda i3 1.0.0.6(2204). The affected element is the function R7WebsSecurityHandler of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.
π@cveNotify
A weakness has been identified in Tenda i3 1.0.0.6(2204). The affected element is the function R7WebsSecurityHandler of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.
π@cveNotify
GitHub
TendaVul/tenda-i3-V1.0.0.6(2204)-R7WebsSecurityHandler-Authentication Bypass Issues at main Β· MrXiaoFan/TendaVul
Tenda equipment vulnerability. Contribute to MrXiaoFan/TendaVul development by creating an account on GitHub.
π¨ CVE-2026-5849
A vulnerability was determined in Tenda i12 1.0.0.11(3862). The impacted element is an unknown function of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.
π@cveNotify
A vulnerability was determined in Tenda i12 1.0.0.11(3862). The impacted element is an unknown function of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.
π@cveNotify
GitHub
vuldb_new/i12/vul_110/README.md at main Β· Litengzheng/vuldb_new
CVE. Contribute to Litengzheng/vuldb_new development by creating an account on GitHub.
π¨ CVE-2026-5962
A vulnerability was detected in Tenda CH22 1.0.0.6(468). This issue affects the function R7WebsSecurityHandlerfunction of the component httpd. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used.
π@cveNotify
A vulnerability was detected in Tenda CH22 1.0.0.6(468). This issue affects the function R7WebsSecurityHandlerfunction of the component httpd. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used.
π@cveNotify
GitHub
vuldb_new/CH22/vul_55/README.md at main Β· Litengzheng/vuldb_new
CVE. Contribute to Litengzheng/vuldb_new development by creating an account on GitHub.
π¨ CVE-2026-33467
Improper Verification of Cryptographic Signature (CWE-347) in Elastic Package Registry could allow an attacker positioned to intercept network traffic, or to otherwise influence the contents served to a self-hosted registry, to substitute a tampered package without the integrity check failing closed.
π@cveNotify
Improper Verification of Cryptographic Signature (CWE-347) in Elastic Package Registry could allow an attacker positioned to intercept network traffic, or to otherwise influence the contents served to a self-hosted registry, to substitute a tampered package without the integrity check failing closed.
π@cveNotify
Discuss the Elastic Stack
Elastic Package Registry 1.38.0 Security Update (ESA-2026-27)
Improper Verification of Cryptographic Signature in Elastic Package Registry Leading to Package Integrity Bypass Improper Verification of Cryptographic Signature (CWE-347) in Elastic Package Registry could allow an attacker positioned to intercept networkβ¦
π¨ CVE-2026-41446
Snap One WattBox 800 and 820 series firmware versions prior to 2.10.0.0 contain undisclosed diagnostic HTTP endpoints that require only the device MAC address and service tag for authentication, both of which are printed in plaintext on the physical device label. Attackers with access to the device label or documentation containing these values can authenticate to the several endpoints and execute arbitrary commands as root on the device.
π@cveNotify
Snap One WattBox 800 and 820 series firmware versions prior to 2.10.0.0 contain undisclosed diagnostic HTTP endpoints that require only the device MAC address and service tag for authentication, both of which are printed in plaintext on the physical device label. Attackers with access to the device label or documentation containing these values can authenticate to the several endpoints and execute arbitrary commands as root on the device.
π@cveNotify
π¨ CVE-2026-41649
Outline is a service that allows for collaborative documentation. The `shares.create` API endpoint starting in version 0.86.0 and prior to version 1.7.0 has an insecure direct object reference.. When both `collectionId` and `documentId` are provided in the request, the authorization logic only checks access to the collection, completely ignoring the document. This allows an authenticated attacker to generate a valid public share link for any document on the platform, including documents belonging to other workspaces. The full document contents can then be retrieved via the `documents.info` endpoint. Version 1.7.0 contains a patch.
π@cveNotify
Outline is a service that allows for collaborative documentation. The `shares.create` API endpoint starting in version 0.86.0 and prior to version 1.7.0 has an insecure direct object reference.. When both `collectionId` and `documentId` are provided in the request, the authorization logic only checks access to the collection, completely ignoring the document. This allows an authenticated attacker to generate a valid public share link for any document on the platform, including documents belonging to other workspaces. The full document contents can then be retrieved via the `documents.info` endpoint. Version 1.7.0 contains a patch.
π@cveNotify
GitHub
fix: Use verified JWT for rate limiting (#12114) Β· outline/outline@1b91a29
* fix: Use verified JWT for rate limiting
* PR feedback
* Prefer guards
* PR feedback
* Prefer guards
π¨ CVE-2026-42167
mod_sql in ProFTPD before 1.3.10rc1 allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands (e.g., COPY TO PROGRAM).
π@cveNotify
mod_sql in ProFTPD before 1.3.10rc1 allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands (e.g., COPY TO PROGRAM).
π@cveNotify
π¨ CVE-2026-42615
GCHQ CyberChef before 11.0.0 allows XSS via Show Base64 offsets, as demonstrated by the /#recipe=Show_Base64_offsets('%3Cscript substring.
π@cveNotify
GCHQ CyberChef before 11.0.0 allows XSS via Show Base64 offsets, as demonstrated by the /#recipe=Show_Base64_offsets('%3Cscript substring.
π@cveNotify
GitHub
Fix XSS in Show Base64 offsets (#2346) Β· gchq/CyberChef@9641ae0
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis - Fix XSS in Show Base64 offsets (#2346) Β· gchq/CyberChef@9641ae0