FediSecfeeds

CVE	CVSS	EPSS	Posts	Repos	Nuclei	Updated	Description
CVE-2026-4946	8.8	0.00%	2	0		2026-03-29T20:16:12.723000	Ghidra versions prior to 12.0.3 improperly process annotation directives embedde
CVE-2026-0562	8.3	0.00%	2	0		2026-03-29T18:16:14.460000	A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows
CVE-2026-0560	7.5	0.00%	2	0		2026-03-29T18:16:14.303000	A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms ver
CVE-2026-0558	7.5	0.00%	4	0		2026-03-29T18:16:13.250000	A vulnerability in parisneo/lollms, up to and including version 2.2.0, allows un
CVE-2026-34005	8.8	0.00%	2	1		2026-03-29T17:16:44.257000	In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, r
CVE-2026-22744	7.5	0.03%	2	0		2026-03-29T15:36:29	In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controll
CVE-2026-22743	7.5	0.04%	2	0		2026-03-29T15:35:09	Spring AI's spring-ai-neo4j-store contains a Cypher injection vulnerability in N
CVE-2026-22738	9.8	0.07%	3	0		2026-03-29T15:31:54	In Spring AI, a SpEL injection vulnerability exists in SimpleVectorStore when a
CVE-2026-5045	8.8	0.00%	2	0		2026-03-29T15:30:29	A vulnerability was detected in Tenda FH1201 1.2.0.14(408). This impacts the fun
CVE-2026-33573	8.8	0.00%	4	0		2026-03-29T15:30:29	OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the
CVE-2026-32980	7.5	0.00%	4	0		2026-03-29T15:30:29	OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies befo
CVE-2026-5044	8.8	0.00%	4	0		2026-03-29T15:30:29	A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affec
CVE-2026-33572	8.4	0.00%	2	0		2026-03-29T15:30:29	OpenClaw before 2026.2.17 creates session transcript JSONL files with overly bro
CVE-2026-32987	9.8	0.00%	2	0		2026-03-29T15:30:29	OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during dev
CVE-2026-32922	10.0	0.00%	4	0		2026-03-29T15:30:28	OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in devic
CVE-2026-32974	8.6	0.00%	6	0		2026-03-29T15:30:28	OpenClaw before 2026.3.12 contains an authentication bypass vulnerability in Fei
CVE-2026-32973	9.8	0.00%	6	0		2026-03-29T15:30:28	OpenClaw before 2026.3.11 contains an exec allowlist bypass vulnerability where
CVE-2026-32915	8.8	0.00%	2	0		2026-03-29T15:30:28	OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability allow
CVE-2026-32914	8.8	0.00%	2	0		2026-03-29T15:30:28	OpenClaw before 2026.3.12 contains an insufficient access control vulnerability
CVE-2026-32924	9.8	0.00%	2	0		2026-03-29T15:30:28	OpenClaw before 2026.3.12 contains an authorization bypass vulnerability where F
CVE-2026-32918	8.4	0.00%	2	0		2026-03-29T15:30:28	OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the
CVE-2026-32978	8.1	0.00%	2	0		2026-03-29T15:30:28	OpenClaw before 2026.3.11 contains an approval integrity vulnerability where sys
CVE-2026-34226	7.5	0.03%	1	0		2026-03-29T15:23:57	### Summary `happy-dom` may attach cookies from the current page origin (`window
CVE-2026-5046	8.8	0.00%	2	0		2026-03-29T15:16:36.990000	A flaw has been found in Tenda FH1201 1.2.0.14(408). Affected is the function fo
CVE-2026-33575	7.5	0.00%	4	0		2026-03-29T13:17:03.370000	OpenClaw before 2026.3.12 embeds long-lived shared gateway credentials directly
CVE-2026-32975	9.8	0.00%	2	0		2026-03-29T13:17:01.763000	OpenClaw before 2026.3.12 contains a weak authorization vulnerability in Zalouse
CVE-2026-5041	4.7	0.23%	2	0		2026-03-29T12:31:30	A vulnerability was identified in code-projects Chamber of Commerce Membership M
CVE-2026-5042	8.8	0.04%	2	0		2026-03-29T12:31:25	A security flaw has been discovered in Belkin F9K1122 1.00.33. The affected elem
CVE-2026-5043	8.8	0.04%	2	0		2026-03-29T12:15:57.937000	A weakness has been identified in Belkin F9K1122 1.00.33. The impacted element i
CVE-2026-5035	7.3	0.03%	2	0		2026-03-29T09:30:17	A vulnerability has been found in code-projects Accounting System 1.0. This affe
CVE-2026-5036	8.8	0.05%	4	0		2026-03-29T08:15:56.063000	A vulnerability was found in Tenda 4G06 04.06.01.29. This vulnerability affects
CVE-2026-5033	7.3	0.03%	2	0		2026-03-29T06:31:22	A vulnerability was detected in code-projects Accounting System 1.0. Affected by
CVE-2026-5024	8.8	0.04%	4	0		2026-03-29T06:31:20	A vulnerability was found in D-Link DIR-513 1.10. This issue affects the functio
CVE-2026-5021	8.8	0.05%	4	0		2026-03-29T03:30:24	A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPU
CVE-2026-4851	0	0.09%	4	0		2026-03-29T01:15:56.967000	GRID::Machine versions through 0.127 for Perl allows arbitrary code execution vi
CVE-2026-5019	7.3	0.03%	2	0		2026-03-29T00:31:05	A security vulnerability has been detected in code-projects Simple Food Order Sy
CVE-2026-5004	8.8	0.04%	4	0		2026-03-28T18:30:20	A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This impacts the
CVE-2017-20225	9.8	0.07%	1	0		2026-03-28T12:30:36	TiEmu 2.08 and prior contains a stack-based buffer overflow vulnerability that a
CVE-2017-20227	9.8	0.07%	1	0		2026-03-28T12:30:36	JAD Java Decompiler 1.5.8e-1kali1 and prior contains a stack-based buffer overfl
CVE-2026-30457	9.8	0.07%	2	0		2026-03-28T03:32:30	An issue in the /parser/dwoo component of Daylight Studio FuelCMS v1.5.2 allows
CVE-2026-4987	7.5	0.07%	6	0		2026-03-28T03:31:30	The SureForms – Contact Form, Payment Form & Other Custom Form Builder plugin fo
CVE-2026-30458	9.1	0.03%	2	0		2026-03-28T03:16:01.540000	An issue in Daylight Studio FuelCMS v1.5.2 allows attackers to exfiltrate users'
CVE-2026-4248	8.0	0.03%	4	0		2026-03-28T00:31:24	The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information
CVE-2026-27309	7.8	0.03%	1	0		2026-03-28T00:31:19	Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free
CVE-2026-1679	7.3	0.03%	2	0		2026-03-28T00:16:04.740000	The eswifi socket offload driver copies user-provided payloads into a fixed buff
CVE-2026-4961	8.8	0.05%	1	0		2026-03-27T23:17:16.953000	A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulner
CVE-2026-4960	8.8	0.05%	1	0		2026-03-27T23:17:16.770000	A vulnerability was determined in Tenda AC6 15.03.05.16. Affected is the functio
CVE-2026-33976	9.6	0.14%	5	0		2026-03-27T22:16:22.250000	Notesnook is a note-taking app. Prior to version 3.3.11 on Web/Desktop and 3.3.1
CVE-2026-33955	8.6	0.06%	1	0		2026-03-27T22:16:22.083000	Notesnook is a note-taking app. Prior to version 3.3.11 on Web/Desktop, a cross-
CVE-2026-33940	8.1	0.04%	1	0		2026-03-27T22:16:21.030000	Handlebars provides the power necessary to let users build semantic templates. I
CVE-2026-33939	7.5	0.04%	1	0		2026-03-27T22:16:20.857000	Handlebars provides the power necessary to let users build semantic templates. I
CVE-2026-33661	8.6	0.13%	1	0		2026-03-27T22:10:54	## Summary The `verify_wechat_sign()` function in `src/Functions.php` unconditi
CVE-2026-33938	8.1	0.07%	1	0		2026-03-27T21:52:26	## Summary The `@partial-block` special variable is stored in the template data
CVE-2026-33894	7.5	0.03%	2	0		2026-03-27T21:50:56	## Summary RSASSA PKCS#1 v1.5 signature verification accepts forged signatures f
CVE-2026-33873	None	0.08%	2	0		2026-03-27T21:49:28	## Description ### 1. Summary The Agentic Assistant feature in Langflow execut
CVE-2026-33744	7.8	0.02%	2	0		2026-03-27T21:37:34	## Summary The `docker.system_packages` field in `bentofile.yaml` accepts arbit
CVE-2026-33718	7.6	0.23%	2	0		2026-03-27T21:37:14	## Summary A Command Injection vulnerability exists in the `get_git_diff()` met
CVE-2026-33687	8.8	0.04%	1	0		2026-03-27T21:35:59	### Summary The `code16/sharp` Laravel admin panel package contains a vulnerabi
CVE-2026-33673	7.7	0.04%	2	0		2026-03-27T21:35:45	### Impact Multiple stored Cross-Site Scripting (stored XSS) vulnerabilities in
CVE-2026-30637	7.5	0.08%	1	0		2026-03-27T21:32:40	Server-Side Request Forgery (SSRF) vulnerability exists in the AnnounContent of
CVE-2026-30689	7.5	0.03%	1	0		2026-03-27T21:32:39	A blog.admin v.8.0 and before system's getinfobytoken API interface contains an
CVE-2026-30302	10.0	0.41%	1	0		2026-03-27T21:32:39	The command auto-approval module in CodeRider-Kilo contains an OS Command Inject
CVE-2026-4976	8.8	0.08%	1	0		2026-03-27T21:31:44	A vulnerability was found in Totolink LR350 9.3.5u.6369_B20220309. This vulnerab
CVE-2026-4974	8.8	0.05%	1	0		2026-03-27T21:31:44	A flaw has been found in Tenda AC7 15.03.06.44. Affected by this issue is the fu
CVE-2026-33757	9.6	0.06%	1	0		2026-03-27T21:31:24	### Impact OpenBao does not prompt for user confirmation when logging in via JW
CVE-2026-33670	9.8	0.06%	2	0		2026-03-27T21:24:24	### Details The /api/file/readDir interface was used to traverse and retrieve t
CVE-2026-33669	9.8	0.04%	2	0		2026-03-27T21:20:42	### Details Document IDs were retrieved via the /api/file/readDir interface, an
CVE-2026-33937	9.8	0.25%	4	1		2026-03-27T21:17:27.417000	Handlebars provides the power necessary to let users build semantic templates. I
CVE-2026-33895	7.5	0.03%	2	0		2026-03-27T21:17:26.157000	Forge (also called `node-forge`) is a native implementation of Transport Layer S
CVE-2026-33891	7.5	0.04%	1	0		2026-03-27T21:17:25.817000	Forge (also called `node-forge`) is a native implementation of Transport Layer S
CVE-2026-29871	7.5	0.04%	2	0		2026-03-27T21:17:21.343000	A path traversal vulnerability exists in the awesome-llm-apps project in commit
CVE-2026-33413	None	0.05%	1	0		2026-03-27T20:48:47	### Impact _What kind of vulnerability is it? Who is impacted?_ Multiple vulner
CVE-2025-53521	9.8	19.16%	11	0		2026-03-27T20:43:45.780000	When a BIG-IP APM access policy is configured on a virtual server, specific mali
CVE-2026-4975	8.8	0.05%	1	0		2026-03-27T20:16:38.707000	A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the funct
CVE-2026-34205	9.6	0.02%	3	0		2026-03-27T20:16:35.360000	Home Assistant is open source home automation software that puts local control a
CVE-2026-33870	7.5	0.03%	2	0		2026-03-27T20:16:34.663000	Netty is an asynchronous, event-driven network application framework. In version
CVE-2026-32241	7.5	0.13%	2	0		2026-03-27T20:16:30.570000	Flannel is a network fabric for containers, designed for Kubernetes. The Flannel
CVE-2026-30463	7.7	0.03%	2	0		2026-03-27T20:16:28.583000	Daylight Studio FuelCMS v1.5.2 was discovered to contain a SQL injection vulnera
CVE-2026-30304	9.6	0.06%	1	0		2026-03-27T20:16:28.360000	In its design for automatic terminal command execution, AI Code offers two optio
CVE-2026-30303	9.8	0.35%	3	0		2026-03-27T20:16:28.163000	The command auto-approval module in Axon Code contains an OS Command Injection v
CVE-2026-33696	8.8	0.24%	1	0		2026-03-27T19:40:55.160000	n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.
CVE-2026-34374	9.1	0.03%	3	0		2026-03-27T19:16:42.930000	WWBN AVideo is an open source video platform. In versions up to and including 26
CVE-2026-33989	8.1	0.04%	2	0		2026-03-27T19:13:18	### Summary The `@mobilenext/mobile-mcp` server contains a Path Traversal vulner
CVE-2026-33980	8.3	0.05%	1	0		2026-03-27T19:08:13	### Summary adx-mcp-server (<= latest, commit 48b2933) contains KQL (Kusto Quer
CVE-2026-1961	8.0	0.12%	1	0		2026-03-27T18:32:29	A flaw was found in Foreman. A remote attacker could exploit a command injection
CVE-2026-28368	8.7	0.10%	1	0		2026-03-27T18:31:34	A flaw was found in Undertow. This vulnerability allows a remote attacker to con
CVE-2026-28367	8.7	0.04%	1	0		2026-03-27T18:31:34	A flaw was found in Undertow. A remote attacker can exploit this vulnerability b
CVE-2025-15381	8.1	0.01%	1	0		2026-03-27T18:31:27	In the latest version of mlflow/mlflow, when the `basic-auth` app is enabled, tr
CVE-2026-27876	9.1	0.08%	4	0		2026-03-27T18:31:26	A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to
CVE-2026-33941	8.3	0.02%	1	0		2026-03-27T18:22:12	## Summary The Handlebars CLI precompiler (`bin/handlebars` / `lib/precompiler.
CVE-2026-33979	8.2	0.01%	2	0		2026-03-27T17:56:47	## Description A vulnerability has been identified in express-xss-sanitizer (<=
CVE-2026-33945	10.0	0.06%	3	0		2026-03-27T17:22:35	### Summary Incus instances have an option to provide credentials to systemd in
CVE-2026-33898	8.8	0.06%	2	0		2026-03-27T17:21:35	### Summary The web server spawned by `incus webui` incorrectly validates the au
CVE-2026-33897	10.0	0.05%	2	0		2026-03-27T17:17:04	### Summary Instance template files can be used to cause arbitrary read or write
CVE-2026-32857	8.6	0.03%	2	0		2026-03-27T17:16:29.177000	Firecrawl version 2.8.0 and prior contain a server-side request forgery (SSRF) p
CVE-2026-28369	8.7	0.13%	1	0		2026-03-27T17:16:28.240000	A flaw was found in Undertow. When Undertow receives an HTTP request where the f
CVE-2026-28377	7.5	0.01%	1	0		2026-03-27T15:31:28	A vulnerability in Grafana Tempo exposes the S3 SSE-C encryption key in plaintex
CVE-2026-27880	7.5	0.01%	4	0		2026-03-27T15:30:32	The OpenFeature feature toggle evaluation endpoint reads unbounded values into m
CVE-2026-5026	None	0.07%	1	0		2026-03-27T15:30:32	The '/api/v1/files/images/{flow_id}/{file_name}' endpoint serves SVG files with
CVE-2026-27893	8.8	0.03%	2	0		2026-03-27T15:27:20	### Summary Two model implementation files hardcode `trust_remote_code=True`
CVE-2026-5027	8.8	0.05%	2	0		2026-03-27T15:17:04.743000	The 'POST /api/v2/files' endpoint does not sanitize the 'filename' parameter fro
CVE-2026-4984	8.2	0.03%	2	0		2026-03-27T15:17:03.953000	The Twilio integration webhook handler accepts any POST request without validati
CVE-2026-33634	8.8	20.84%	2	1		2026-03-27T13:26:11.020000	Trivy is a security scanner. On March 19, 2026, a threat actor used compromised
CVE-2026-27858	7.5	0.05%	3	0		2026-03-27T09:31:30	Attacker can send a specifically crafted message before authentication that caus
CVE-2025-59032	7.5	0.06%	2	0		2026-03-27T09:31:18	ManageSieve AUTHENTICATE command crashes when using literal as SASL initial resp
CVE-2026-24031	7.7	0.05%	2	0		2026-03-27T09:16:19.447000	Dovecot SQL based authentication can be bypassed when auth_username_chars is cle
CVE-2026-32678	7.5	0.07%	2	0		2026-03-27T06:31:54	Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may a
CVE-2026-32669	8.8	0.04%	2	0		2026-03-27T06:16:38.450000	Code injection vulnerability exists in BUFFALO Wi-Fi router products. If this vu
CVE-2026-27650	8.8	0.12%	2	0		2026-03-27T06:16:38.257000	OS Command Injection vulnerability exists in BUFFALO Wi-Fi router products. If t
CVE-2026-22742	8.6	0.03%	2	0		2026-03-27T06:16:37.833000	Spring AI's spring-ai-bedrock-converse contains a Server-Side Request Forgery (S
CVE-2026-4906	8.8	0.05%	2	0		2026-03-27T03:31:43	A vulnerability was determined in Tenda AC5 15.03.06.47. The affected element is
CVE-2026-33747	8.4	0.01%	2	0		2026-03-27T01:16:21.330000	BuildKit is a toolkit for converting source code to build artifacts in an effici
CVE-2026-33728	0	0.57%	1	0		2026-03-27T01:16:20.203000	dd-trace-java is a Datadog APM client for Java. In versions of dd-trace-java 0.4
CVE-2026-33701	0	0.50%	1	0		2026-03-27T01:16:19.313000	OpenTelemetry Java Instrumentation provides OpenTelemetry auto-instrumentation a
CVE-2026-4905	8.8	0.05%	2	0		2026-03-27T00:31:32	A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function for
CVE-2026-34352	8.4	0.01%	1	0		2026-03-27T00:31:32	In TigerVNC before 1.16.2, Image.cxx in x0vncserver allows other users to observ
CVE-2026-4903	8.8	0.05%	1	0		2026-03-27T00:31:32	A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the f
CVE-2026-3650	7.5	0.05%	1	0		2026-03-27T00:31:32	A memory leak exists in the Grassroots DICOM library (GDCM). The bug occurs when
CVE-2026-4904	8.8	0.05%	2	0		2026-03-27T00:16:24.170000	A vulnerability has been found in Tenda AC5 15.03.06.47. This issue affects the
CVE-2026-33697	7.5	0.00%	2	0		2026-03-27T00:16:23.133000	Cocos AI is a confidential computing system for AI. The current implementation o
CVE-2026-4902	8.8	0.05%	1	0		2026-03-26T23:16:21.090000	A vulnerability was detected in Tenda AC5 15.03.06.47. This affects the function
CVE-2026-33943	8.8	0.07%	1	0		2026-03-26T22:22:21	### Summary A code injection vulnerability in `ECMAScriptModuleCompiler` allows
CVE-2026-33686	8.8	0.06%	1	0		2026-03-26T22:16:31.050000	Sharp is a content management framework built for Laravel as a package. Versions
CVE-2026-33671	7.5	0.04%	1	0		2026-03-26T22:16:30.210000	Picomatch is a glob matcher written JavaScript. Versions prior to 4.0.4, 3.0.2,
CVE-2025-12805	8.1	0.03%	1	0		2026-03-26T22:16:25.920000	A flaw was found in Red Hat OpenShift AI (RHOAI) llama-stack-operator. This vuln
CVE-2025-41359	7.8	0.02%	1	0		2026-03-26T21:31:26	Vulnerability related to an unquoted service path in Small HTTP Server 3.06.36,
CVE-2025-41368	8.1	0.02%	1	0		2026-03-26T21:07:45.300000	Problem in the Small HTTP Server v3.06.36 service. An authenticated path travers
CVE-2026-33942	9.8	0.33%	1	0		2026-03-26T20:42:31.563000	Saloon is a PHP library that gives users tools to build API integrations and SDK
CVE-2025-55262	8.3	0.03%	1	0		2026-03-26T20:00:28.643000	HCL Aftermarket DPC is affected by SQL Injection which allows attacker to exploi
CVE-2026-32522	8.6	0.05%	1	0		2026-03-26T19:17:01.930000	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') v
CVE-2025-15101	8.8	0.02%	1	0		2026-03-26T16:43:20.300000	A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Web
CVE-2026-22790	8.8	0.05%	1	0		2026-03-26T16:16:04.967000	EVerest is an EV charging software stack. Prior to version 2026.02.0, `HomeplugM
CVE-2026-33017	9.8	5.65%	3	5		2026-03-26T15:41:23	## Summary The `POST /api/v1/build_public_tmp/{flow_id}/flow` endpoint allows b
CVE-2026-32523	10.0	0.04%	1	0		2026-03-26T15:31:39	Unrestricted Upload of File with Dangerous Type vulnerability in denishua WPJAM
CVE-2026-32530	8.8	0.04%	1	0		2026-03-26T15:31:39	Incorrect Privilege Assignment vulnerability in WPFunnels Creator LMS creatorlms
CVE-2026-4747	8.8	0.15%	1	0		2026-03-26T15:31:39	Each RPCSEC_GSS data packet is validated by a routine which checks a signature i
CVE-2026-4652	7.5	0.05%	1	0		2026-03-26T15:31:38	On a system exposing an NVMe/TCP target, a remote client can trigger a kernel pa
CVE-2025-55261	8.1	0.04%	1	0		2026-03-26T15:30:48	HCL Aftermarket DPC is affected by Missing Functional Level Access Control which
CVE-2026-27664	7.5	0.04%	1	0		2026-03-26T15:30:48	A vulnerability has been identified in CPCI85 Central Processing/Communication (
CVE-2026-2511	7.5	0.07%	1	0		2026-03-26T15:30:47	The JS Help Desk – AI-Powered Support & Ticketing System plugin for WordPress is
CVE-2026-4247	7.5	0.02%	1	0		2026-03-26T15:16:41.263000	When a challenge ACK is to be sent tcp_respond() constructs and sends the challe
CVE-2026-24068	8.8	0.04%	1	0		2026-03-26T15:16:32.303000	The VSL privileged helper does utilize NSXPC for IPC. The implementation of the
CVE-2026-23995	8.4	0.01%	2	0		2026-03-26T15:16:32.137000	EVerest is an EV charging software stack. Prior to version 2026.02.0, stack-base
CVE-2026-4862	8.8	0.04%	1	0		2026-03-26T12:30:35	A security vulnerability has been detected in UTT HiPER 1250GW up to 3.2.7-21090
CVE-2026-4809	9.8	0.39%	1	0		2026-03-26T12:30:35	plank/laravel-mediable through version 6.4.0 can allow upload of a dangerous fil
CVE-2026-4861	8.8	0.04%	1	0		2026-03-26T09:30:34	A weakness has been identified in Wavlink WL-NU516U1 260227. This vulnerability
CVE-2026-33660	10.0	0.11%	1	0		2026-03-25T21:07:45	## Impact An authenticated user with permission to create or modify workflows co
CVE-2026-33167	None	0.02%	1	0		2026-03-25T20:46:52	### Impact The debug exceptions page does not properly escape exception messages
CVE-2025-33244	9.1	0.03%	1	0		2026-03-24T21:31:35	NVIDIA APEX for Linux contains a vulnerability where an unauthorized attacker co
CVE-2026-3055	0	0.03%	14	2		2026-03-24T15:54:09.400000	Insufficient input validation in NetScaler ADC and NetScaler Gateway when config
CVE-2026-3587	10.0	0.12%	1	1		2026-03-24T08:16:01.910000	An unauthenticated remote attacker can exploit a hidden function in the CLI prom
CVE-2026-4681	None	0.50%	1	0		2026-03-24T00:30:28	A critical remote code execution (RCE) vulnerability has been reported in PTC Wi
CVE-2026-3584	9.8	0.29%	3	1		2026-03-23T14:32:02.800000	The Kali Forms plugin for WordPress is vulnerable to Remote Code Execution in al
CVE-2006-10003	9.8	0.07%	1	0		2026-03-19T18:41:18.180000	XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflo
CVE-2026-1678	9.4	0.05%	1	0		2026-03-09T18:33:42.917000	dns_unpack_name() caches the buffer tailroom once and reuses it while appending
CVE-2026-20079	10.0	0.05%	1	2		2026-03-05T19:39:11.967000	A vulnerability in the web interface of Cisco Secure Firewall Management Center
CVE-2026-21962	10.0	0.02%	1	8		2026-02-03T00:30:18	Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in pr
CVE-2025-12548	9.1	44.19%	1	0		2026-01-13T18:31:08	A flaw was found in Eclipse Che che-machine-exec. This vulnerability allows unau
CVE-2024-54492	9.8	0.27%	2	0		2025-11-04T00:32:14	This issue was addressed by using HTTPS when sending information over the networ
CVE-2025-32975	10.0	0.17%	2	0		2025-11-03T20:18:29.263000	Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x bef
CVE-2020-14882	9.8	94.45%	1	41	template	2025-10-27T17:09:11.960000	Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware
CVE-2025-33073	8.8	41.04%	1	7		2025-10-22T00:34:22	Improper access control in Windows SMB allows an authorized attacker to elevate
CVE-2023-2868	9.4	90.02%	1	4		2025-10-22T00:33:51	A remote command injection vulnerability exists in the Barracuda Email Security
CVE-2017-10271	7.5	94.44%	1	31	template	2025-10-22T00:31:29	Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middlewar
CVE-2025-5063	8.8	0.46%	1	0		2025-05-28T15:35:30	Use after free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a
CVE-2020-8561	4.1	0.18%	1	0		2024-11-21T05:39:02.050000	A security issue was discovered in Kubernetes where actors that control the resp
CVE-2026-33991	0	0.05%	4	0			N/A
CVE-2026-33875	0	0.05%	4	0			N/A
CVE-2026-33953	0	0.03%	1	0			N/A
CVE-2026-33755	0	0.03%	1	0			N/A
CVE-2026-34375	0	0.03%	2	0			N/A
CVE-2026-33874	0	0.07%	1	0			N/A
CVE-2026-31943	0	0.03%	1	0			N/A
CVE-2026-31945	0	0.03%	1	0			N/A
CVE-2026-32748	0	0.98%	1	0			N/A
CVE-2026-33396	0	0.76%	1	0			N/A
CVE-2026-22593	0	0.01%	1	0			N/A
CVE-2026-26008	0	0.04%	1	0			N/A

CVE-2026-4946
(8.8 HIGH)

EPSS: 0.00%

updated 2026-03-29T20:16:12.723000

2 posts

Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automatically extracted binary data, resulting in arbitrary command execution when an analyst interacts with the UI. Specifically, the @execute annotation (which is intended for trusted, user-authored comments) is also parsed in comments generated during auto-analysis (such as CFStrings in Mach-O binaries). This a

thehackerwire@mastodon.social at 2026-03-29T20:18:49.000Z ##

🟠 CVE-2026-4946 - High (8.8)

Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automatically extracted binary data, resulting in arbitrary command execution when an analyst interacts with the UI. Specifically, the @execute annotation (which ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4946/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T20:18:49.000Z ##

🟠 CVE-2026-4946 - High (8.8)

Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automatically extracted binary data, resulting in arbitrary command execution when an analyst interacts with the UI. Specifically, the @execute annotation (which ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4946/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-0562
(8.3 HIGH)

EPSS: 0.00%

updated 2026-03-29T18:16:14.460000

2 posts

A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticated user to accept or reject friend requests belonging to other users. The `respond_request()` function in `backend/routers/friends.py` does not implement proper authorization checks, enabling Insecure Direct Object Reference (IDOR) attacks. Specifically, the `/api/friends/requests/{friendship_id}` endpo

thehackerwire@mastodon.social at 2026-03-29T18:38:26.000Z ##

🟠 CVE-2026-0562 - High (8.3)

A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticated user to accept or reject friend requests belonging to other users. The `respond_request()` function in `backend/routers/friends.py` does not impleme...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0562/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T18:38:26.000Z ##

🟠 CVE-2026-0562 - High (8.3)

A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticated user to accept or reject friend requests belonging to other users. The `respond_request()` function in `backend/routers/friends.py` does not impleme...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0562/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-0560
(7.5 HIGH)

EPSS: 0.00%

updated 2026-03-29T18:16:14.303000

2 posts

A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2.2.0, specifically in the `/api/files/export-content` endpoint. The `_download_image_to_temp()` function in `backend/routers/files.py` fails to validate user-controlled URLs, allowing attackers to make arbitrary HTTP requests to internal services and cloud metadata endpoints. This vulnerability can lead

thehackerwire@mastodon.social at 2026-03-29T18:38:17.000Z ##

🟠 CVE-2026-0560 - High (7.5)

A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2.2.0, specifically in the `/api/files/export-content` endpoint. The `_download_image_to_temp()` function in `backend/routers/files.py` fails to validat...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0560/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T18:38:17.000Z ##

🟠 CVE-2026-0560 - High (7.5)

A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2.2.0, specifically in the `/api/files/export-content` endpoint. The `_download_image_to_temp()` function in `backend/routers/files.py` fails to validat...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0560/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-0558
(7.5 HIGH)

EPSS: 0.00%

updated 2026-03-29T18:16:13.250000

4 posts

A vulnerability in parisneo/lollms, up to and including version 2.2.0, allows unauthenticated users to upload and process files through the `/api/files/extract-text` endpoint. This endpoint does not enforce authentication, unlike other file-related endpoints, and lacks the `Depends(get_current_active_user)` dependency. This issue can lead to denial of service (DoS) through resource exhaustion, inf

offseq at 2026-03-29T19:30:30.146Z ##

🚨 HIGH severity: CVE-2026-0558 in parisneo/lollms (≤2.2.0) — /api/files/extract-text allows unauthenticated file uploads, risking DoS & info leaks. Restrict access, enforce auth, and monitor activity. No patch yet. https://radar.offseq.com/threat/cve-2026-0558-cwe-287-improper-authentication-in-p-51fddf90 #OffSeq #Vuln #AppSec

##

thehackerwire@mastodon.social at 2026-03-29T18:38:35.000Z ##

🟠 CVE-2026-0558 - High (7.5)

A vulnerability in parisneo/lollms, up to and including version 2.2.0, allows unauthenticated users to upload and process files through the `/api/files/extract-text` endpoint. This endpoint does not enforce authentication, unlike other file-relate...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0558/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-29T19:30:30.000Z ##

🚨 HIGH severity: CVE-2026-0558 in parisneo/lollms (≤2.2.0) — /api/files/extract-text allows unauthenticated file uploads, risking DoS & info leaks. Restrict access, enforce auth, and monitor activity. No patch yet. https://radar.offseq.com/threat/cve-2026-0558-cwe-287-improper-authentication-in-p-51fddf90 #OffSeq #Vuln #AppSec

##

thehackerwire@mastodon.social at 2026-03-29T18:38:35.000Z ##

🟠 CVE-2026-0558 - High (7.5)

A vulnerability in parisneo/lollms, up to and including version 2.2.0, allows unauthenticated users to upload and process files through the `/api/files/extract-text` endpoint. This endpoint does not enforce authentication, unlike other file-relate...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0558/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-34005
(8.8 HIGH)

EPSS: 0.00%

updated 2026-03-29T17:16:44.257000

2 posts

In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command injection can occur via shell metacharacters in the HostName value via an authenticated DVRIP protocol (TCP port 34567) request to the NetWork.NetCommon configuration handler, because system() is used.

1 repos

https://github.com/uky007/CVE-2026-34005

thehackerwire@mastodon.social at 2026-03-29T17:18:35.000Z ##

🟠 CVE-2026-34005 - High (8.8)

In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command injection can occur via shell metacharacters in the HostName value via an authenticated DVRIP protocol (TCP port 34567) request to the NetWork.NetCommon...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-34005/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T17:18:35.000Z ##

🟠 CVE-2026-34005 - High (8.8)

In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command injection can occur via shell metacharacters in the HostName value via an authenticated DVRIP protocol (TCP port 34567) request to the NetWork.NetCommon...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-34005/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22744
(7.5 HIGH)

EPSS: 0.03%

updated 2026-03-29T15:36:29

2 posts

In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controlled string is passed as a filter value for a TAG field, stringValue() inserts the value directly into the @field:{VALUE} RediSearch TAG block without escaping characters. This issue affects Spring AI: from 1.0.0 before 1.0.5, from 1.1.0 before 1.1.4.

thehackerwire@mastodon.social at 2026-03-28T21:06:49.000Z ##

🟠 CVE-2026-22744 - High (7.5)

In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controlled string is passed as a filter value for a TAG field, stringValue() inserts the value directly into the @field:{VALUE} RediSearch TAG block without escaping ch...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22744/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-28T21:06:49.000Z ##

🟠 CVE-2026-22744 - High (7.5)

In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controlled string is passed as a filter value for a TAG field, stringValue() inserts the value directly into the @field:{VALUE} RediSearch TAG block without escaping ch...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22744/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22743
(7.5 HIGH)

EPSS: 0.04%

updated 2026-03-29T15:35:09

2 posts

Spring AI's spring-ai-neo4j-store contains a Cypher injection vulnerability in Neo4jVectorFilterExpressionConverter. When a user-controlled string is passed as a filter expression key in Neo4jVectorFilterExpressionConverter of spring-ai-neo4j-store, doKey() embeds the key into a backtick-delimited Cypher property accessor (node.`metadata.`) after stripping only double quotes, without escaping embe

thehackerwire@mastodon.social at 2026-03-28T23:00:18.000Z ##

🟠 CVE-2026-22743 - High (7.5)

Spring AI's spring-ai-neo4j-store contains a Cypher injection vulnerability in Neo4jVectorFilterExpressionConverter. When a user-controlled string is passed as a filter expression key in Neo4jVectorFilterExpressionConverter of spring-ai-neo4...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22743/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-28T23:00:18.000Z ##

🟠 CVE-2026-22743 - High (7.5)

Spring AI's spring-ai-neo4j-store contains a Cypher injection vulnerability in Neo4jVectorFilterExpressionConverter. When a user-controlled string is passed as a filter expression key in Neo4jVectorFilterExpressionConverter of spring-ai-neo4...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22743/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22738
(9.8 CRITICAL)

EPSS: 0.07%

updated 2026-03-29T15:31:54

3 posts

In Spring AI, a SpEL injection vulnerability exists in SimpleVectorStore when a user-supplied value is used as a filter expression key. A malicious actor could exploit this to execute arbitrary code. Only applications that use SimpleVectorStore and pass user-supplied input as a filter expression key are affected. This issue affects Spring AI: from 1.0.0 before 1.0.5, from 1.1.0 before 1.1.4.

thehackerwire@mastodon.social at 2026-03-28T22:00:33.000Z ##

🔴 CVE-2026-22738 - Critical (9.8)

In Spring AI, a SpEL injection vulnerability exists in SimpleVectorStore when a user-supplied value is used as a filter expression key. A malicious actor could exploit this to execute arbitrary code. Only applications that use SimpleVectorStor...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22738/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-28T22:00:33.000Z ##

🔴 CVE-2026-22738 - Critical (9.8)

In Spring AI, a SpEL injection vulnerability exists in SimpleVectorStore when a user-supplied value is used as a filter expression key. A malicious actor could exploit this to execute arbitrary code. Only applications that use SimpleVectorStor...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22738/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-03-27T06:00:29.000Z ##

🚨 CRITICAL: CVE-2026-22738 in Spring AI SimpleVectorStore allows unauth RCE via SpEL injection (1.0.0 – 1.0.4, 1.1.0 – 1.1.3). Patch to 1.0.5/1.1.4 when released. Validate input now! https://radar.offseq.com/threat/cve-2026-22738-vulnerability-in-spring-spring-ai-473dec2d #OffSeq #SpringAI #infosec #CVE202622738

##

CVE-2026-5045
(8.8 HIGH)

EPSS: 0.00%

updated 2026-03-29T15:30:29

2 posts

A vulnerability was detected in Tenda FH1201 1.2.0.14(408). This impacts the function WrlclientSet of the file /goform/WrlclientSet of the component Parameter Handler. Performing a manipulation of the argument GO results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and may be used.

thehackerwire@mastodon.social at 2026-03-29T14:19:55.000Z ##

🟠 CVE-2026-5045 - High (8.8)

A vulnerability was detected in Tenda FH1201 1.2.0.14(408). This impacts the function WrlclientSet of the file /goform/WrlclientSet of the component Parameter Handler. Performing a manipulation of the argument GO results in stack-based buffer over...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5045/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T14:19:55.000Z ##

🟠 CVE-2026-5045 - High (8.8)

A vulnerability was detected in Tenda FH1201 1.2.0.14(408). This impacts the function WrlclientSet of the file /goform/WrlclientSet of the component Parameter Handler. Performing a manipulation of the argument GO results in stack-based buffer over...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5045/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33573
(8.8 HIGH)

EPSS: 0.00%

updated 2026-03-29T15:30:29

4 posts

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC that allows authenticated operators with operator.write permission to override workspace boundaries by supplying attacker-controlled spawnedBy and workspaceDir values. Remote operators can escape the configured workspace boundary and execute arbitrary file and exec operations from any process-accessib

thehackerwire@mastodon.social at 2026-03-29T13:32:55.000Z ##

🟠 CVE-2026-33573 - High (8.8)

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC that allows authenticated operators with operator.write permission to override workspace boundaries by supplying attacker-controlled spawnedBy and wo...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33573/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:19:58.000Z ##

🟠 CVE-2026-33573 - High (8.8)

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC that allows authenticated operators with operator.write permission to override workspace boundaries by supplying attacker-controlled spawnedBy and wo...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33573/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:32:55.000Z ##

🟠 CVE-2026-33573 - High (8.8)

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC that allows authenticated operators with operator.write permission to override workspace boundaries by supplying attacker-controlled spawnedBy and wo...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33573/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:19:58.000Z ##

🟠 CVE-2026-33573 - High (8.8)

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC that allows authenticated operators with operator.write permission to override workspace boundaries by supplying attacker-controlled spawnedBy and wo...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33573/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32980
(7.5 HIGH)

EPSS: 0.00%

updated 2026-03-29T15:30:29

4 posts

OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the x-telegram-bot-api-secret-token header, allowing unauthenticated attackers to exhaust server resources. Attackers can send POST requests to the webhook endpoint to force memory consumption, socket time, and JSON parsing work before authentication validation occurs.

thehackerwire@mastodon.social at 2026-03-29T13:20:33.000Z ##

🟠 CVE-2026-32980 - High (7.5)

OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the x-telegram-bot-api-secret-token header, allowing unauthenticated attackers to exhaust server resources. Attackers can send POST requests to the webho...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32980/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:19:33.000Z ##

🟠 CVE-2026-32980 - High (7.5)

OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the x-telegram-bot-api-secret-token header, allowing unauthenticated attackers to exhaust server resources. Attackers can send POST requests to the webho...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32980/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:20:33.000Z ##

🟠 CVE-2026-32980 - High (7.5)

OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the x-telegram-bot-api-secret-token header, allowing unauthenticated attackers to exhaust server resources. Attackers can send POST requests to the webho...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32980/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:19:33.000Z ##

🟠 CVE-2026-32980 - High (7.5)

OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the x-telegram-bot-api-secret-token header, allowing unauthenticated attackers to exhaust server resources. Attackers can send POST requests to the webho...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32980/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-5044
(8.8 HIGH)

EPSS: 0.00%

updated 2026-03-29T15:30:29

4 posts

A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. Such manipulation of the argument webpage leads to stack-based buffer overflow. The attack can be executed remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early a

thehackerwire@mastodon.social at 2026-03-29T13:20:24.000Z ##

🟠 CVE-2026-5044 - High (8.8)

A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. Such manipulation of the argument webpage leads to st...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5044/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:19:24.000Z ##

🟠 CVE-2026-5044 - High (8.8)

A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. Such manipulation of the argument webpage leads to st...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5044/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:20:24.000Z ##

🟠 CVE-2026-5044 - High (8.8)

A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. Such manipulation of the argument webpage leads to st...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5044/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:19:24.000Z ##

🟠 CVE-2026-5044 - High (8.8)

A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. Such manipulation of the argument webpage leads to st...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-5044/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-33572
(8.4 HIGH)

EPSS: 0.00%

updated 2026-03-29T15:30:29

2 posts

OpenClaw before 2026.2.17 creates session transcript JSONL files with overly broad default permissions, allowing local users to read transcript contents. Attackers with local access can read transcript files to extract sensitive information including secrets from tool output.

thehackerwire@mastodon.social at 2026-03-29T13:19:49.000Z ##

🟠 CVE-2026-33572 - High (8.4)

OpenClaw before 2026.2.17 creates session transcript JSONL files with overly broad default permissions, allowing local users to read transcript contents. Attackers with local access can read transcript files to extract sensitive information includ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33572/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:19:49.000Z ##

🟠 CVE-2026-33572 - High (8.4)

OpenClaw before 2026.2.17 creates session transcript JSONL files with overly broad default permissions, allowing local users to read transcript contents. Attackers with local access can read transcript files to extract sensitive information includ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-33572/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32987
(9.8 CRITICAL)

EPSS: 0.00%

updated 2026-03-29T15:30:29

2 posts

OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verification in src/infra/device-bootstrap.ts. Attackers can verify a valid bootstrap code multiple times before approval to escalate pending pairing scopes, including privilege escalation to operator.admin.

thehackerwire@mastodon.social at 2026-03-29T13:19:39.000Z ##

🔴 CVE-2026-32987 - Critical (9.8)

OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verification in src/infra/device-bootstrap.ts. Attackers can verify a valid bootstrap code multiple times before approval to escalate pending pairing scope...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32987/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:19:39.000Z ##

🔴 CVE-2026-32987 - Critical (9.8)

OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verification in src/infra/device-bootstrap.ts. Attackers can verify a valid bootstrap code multiple times before approval to escalate pending pairing scope...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32987/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32922
(10.0 CRITICAL)

EPSS: 0.00%

updated 2026-03-29T15:30:28

4 posts

OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate that allows callers with operator.pairing scope to mint tokens with broader scopes by failing to constrain newly minted scopes to the caller's current scope set. Attackers can obtain operator.admin tokens for paired devices and achieve remote code execution on connected nodes via system.run or gain unaut

thehackerwire@mastodon.social at 2026-03-29T13:36:58.000Z ##

🔴 CVE-2026-32922 - Critical (9.9)

OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate that allows callers with operator.pairing scope to mint tokens with broader scopes by failing to constrain newly minted scopes to the caller's current s...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32922/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:35:33.000Z ##

🔴 CVE-2026-32922 - Critical (9.9)

OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate that allows callers with operator.pairing scope to mint tokens with broader scopes by failing to constrain newly minted scopes to the caller's current s...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32922/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:36:58.000Z ##

🔴 CVE-2026-32922 - Critical (9.9)

OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate that allows callers with operator.pairing scope to mint tokens with broader scopes by failing to constrain newly minted scopes to the caller's current s...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32922/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-03-29T13:35:33.000Z ##

🔴 CVE-2026-32922 - Critical (9.9)

OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate that allows callers with operator.pairing scope to mint tokens with broader scopes by failing to constrain newly minted scopes to the caller's current s...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32922/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-32974
(8.6 HIGH)

EPSS: 0.00%

updated 2026-03-29T15:30:28

6 posts

OpenClaw before 2026.3.12 contains an authentication bypass vulnerability in Feishu webhook mode when only verificationToken is configured without encryptKey, allowing acceptance of forged events. Unauthenticated network attackers can inject forged Feishu events and trigger downstream tool execution by reaching the webhook endpoint.

thehackerwire@mastodon.social at 2026-03-29T13:36:49.000Z ##

🟠 CVE-2026-32974 - High (8.6)