CVE-2026-1143
(8.8 HIGH)

EPSS: 0.00%

updated 2026-01-19T07:16:22.667000

2 posts

A weakness has been identified in TOTOLINK A3700R 9.1.2u.5822_B20200513. This affects the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument ssid can lead to buffer overflow. The attack may be launched remotely. The exploit has been made available to the public and could be used for attacks.

CVE-2026-1140
(8.8 HIGH)

EPSS: 0.00%

updated 2026-01-19T06:16:01.640000

1 posts

A vulnerability was found in UTT 进取 520W 1.7.7-180627. This issue affects the function strcpy of the file /goform/ConfigExceptAli. The manipulation results in buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-1139
(8.8 HIGH)

EPSS: 0.00%

updated 2026-01-19T05:16:09.303000

2 posts

A vulnerability has been found in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /goform/ConfigExceptMSN. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-1138
(8.8 HIGH)

EPSS: 0.00%

updated 2026-01-19T05:16:09.100000

1 posts

A flaw has been found in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/ConfigExceptQQ. Executing a manipulation can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-1137
(8.8 HIGH)

EPSS: 0.00%

updated 2026-01-19T05:16:05.920000

1 posts

A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function strcpy of the file /goform/formWebAuthGlobalConfig. Performing a manipulation results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-0863
(8.6 HIGH)

EPSS: 0.00%

updated 2026-01-18T18:30:16

3 posts

Using string formatting and exception handling, an attacker may bypass n8n's python-task-executor sandbox restrictions and run arbitrary unrestricted Python code in the underlying operating system. The vulnerability can be exploited via the Code block by an authenticated user with basic permissions and can lead to a full n8n instance takeover on instances operating under "Internal" execution mode

CVE-2025-10484
(9.8 CRITICAL)

EPSS: 0.25%

updated 2026-01-17T09:31:25

1 posts

The Registration & Login with Mobile Phone Number for WooCommerce plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.3.1. This is due to the plugin not properly verifying a users identity prior to authenticating them via the fma_lwp_set_session_php_fun() function. This makes it possible for unauthenticated attackers to authenticate as any user on th

1 repos

https://github.com/microcyberr/CVE-2025-10484

CVE-2025-14478
(7.5 HIGH)

EPSS: 0.07%

updated 2026-01-17T09:31:25

1 posts

The Demo Importer Plus plugin for WordPress is vulnerable to XML External Entity Injection (XXE) in all versions up to, and including, 2.0.9 via the SVG file upload functionality. This makes it possible for authenticated attackers, with Author-level access and above, to achieve code execution in vulnerable configurations. This only impacts sites on versions of PHP older than 8.0.

CVE-2025-15403
(9.8 CRITICAL)

EPSS: 0.08%

updated 2026-01-17T03:30:25

1 posts

The RegistrationMagic plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.0.7.1. This is due to the 'add_menu' function is accessible via the 'rm_user_exists' AJAX action and allows arbitrary updates to the 'admin_order' setting. This makes it possible for unauthenticated attackers to injecting an empty slug into the order parameter, and manipulate th

CVE-2026-0613
(7.5 HIGH)

EPSS: 0.03%

updated 2026-01-17T00:31:30

1 posts

The Librarian contains an internal port scanning vulnerability, facilitated by the `web_fetch` tool, which can be used with SSRF-style behavior to perform GET requests to internal IP addresses and services, enabling scanning of the Hertzner cloud environment that TheLibrarian uses. The vendor has fixed the vulnerability in all affected versions.

CVE-2026-0612
(7.5 HIGH)

EPSS: 0.03%

updated 2026-01-17T00:31:30

1 posts

The Librarian contains a information leakage vulnerability through the `web_fetch` tool, which can be used to retrieve arbitrary external content provided by an attacker, which can be used to proxy requests through The Librarian infrastructure. The vendor has fixed the vulnerability in all versions of TheLibrarian.

CVE-2025-69581
(7.5 HIGH)

EPSS: 0.03%

updated 2026-01-17T00:31:30

1 posts

An issue was discovered in Chamillo LMS 1.11.2. The Social Network /personal_data endpoint exposes full sensitive user information even after logout because proper cache-control is missing. Using the browser back button restores all personal data, allowing unauthorized users on the same device to view confidential information. This leads to profiling, impersonation, targeted attacks, and significa

1 repos

https://github.com/Rivek619/CVE-2025-69581

CVE-2026-21223
(5.1 MEDIUM)

EPSS: 0.05%

updated 2026-01-17T00:30:30

2 posts

Microsoft Edge Elevation Service exposes a privileged COM interface that inadequately validates the privileges of the calling process. A standard (non‑administrator) local user can invoke the IElevatorEdge interface method LaunchUpdateCmdElevatedAndWait, causing the service to execute privileged update commands as LocalSystem. This allows a non‑administrator to enable or disable Windows Virtualiza

CVE-2026-20960
(8.0 HIGH)

EPSS: 0.07%

updated 2026-01-16T22:16:25.553000

3 posts

Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over a network.

CVE-2026-0616
(7.5 HIGH)

EPSS: 0.03%

updated 2026-01-16T22:16:19.490000

1 posts

TheLibrarians web_fetch tool can be used to retrieve the Adminer interface content, which can then be used to log into the internal TheLibrarian backend system. The vendor has fixed the vulnerability in all affected versions.

CVE-2025-14894
(7.5 HIGH)

EPSS: 0.03%

updated 2026-01-16T22:16:18.110000

1 posts

Livewire Filemanager, commonly used in Laravel applications, contains LivewireFilemanagerComponent.php, which does not perform file type and MIME validation, allowing for RCE through upload of a malicious php file that can then be executed via the /storage/ URL if a commonly performed setup process within Laravel applications has been completed.

CVE-2025-40300
(5.5 MEDIUM)

EPSS: 0.04%

updated 2026-01-16T21:31:29

1 posts

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor (like QEMU). Existing mitigations already protect kernel/KVM from a malicious guest. Userspace can additionally be protected by flushing the branch predictors af

CVE-2025-67091
(6.5 MEDIUM)

EPSS: 0.02%

updated 2026-01-16T21:28:39.047000

1 posts

An issue in GL Inet GL.Inet AX1800 Version 4.6.4 & 4.6.8 are vulnerable. GL.Inet AX1800 Version 4.6.4 & 4.6.8 in the GL.iNet custom opkg wrapper script located at /usr/libexec/opkg-call. The script is executed with root privileges when triggered via the LuCI web interface or authenticated API calls to manage packages. The vulnerable code uses shell redirection to create a lock file in the world-wr

CVE-2025-67090
(5.1 MEDIUM)

EPSS: 0.11%

updated 2026-01-16T21:28:08.207000

1 posts

The LuCI web interface on Gl Inet GL.Inet AX1800 Version 4.6.4 & 4.6.8 are vulnerable. Fix available in version 4.8.2 GL.Inet AX1800 Version 4.6.4 & 4.6.8 lacks rate limiting or account lockout mechanisms on the authentication endpoint (`/cgi-bin/luci`). An unauthenticated attacker on the local network can perform unlimited password attempts against the admin interface.

CVE-2026-21858
(10.0 CRITICAL)

EPSS: 3.72%

updated 2026-01-16T19:31:34.467000

4 posts

n8n is an open source workflow automation platform. Versions starting with 1.65.0 and below 1.121.0 enable an attacker to access files on the underlying server through execution of certain form-based workflows. A vulnerable workflow could grant access to an unauthenticated remote attacker, resulting in exposure of sensitive information stored on the system and may enable further compromise dependi

Nuclei template

5 repos

https://github.com/sastraadiwiguna-purpleeliteteaming/SASTRA-ADI-WIGUNA-CVE-2026-21858-Holistic-Audit

https://github.com/eduardorossi84/CVE-2026-21858-POC

https://github.com/Ashwesker/Ashwesker-CVE-2026-21858

https://github.com/Chocapikk/CVE-2026-21858

https://github.com/cropnet/ni8mare-scanner

CVE-2025-68493
(8.1 HIGH)

EPSS: 0.13%

updated 2026-01-16T19:10:47

2 posts

Missing XML Validation vulnerability in Apache Struts, Apache Struts. This issue affects Apache Struts: from 2.0.0 before 2.2.1; Apache Struts: from 2.2.1 through 6.1.0. Users are recommended to upgrade to version 6.1.1, which fixes the issue.

CVE-2025-68428
(7.5 HIGH)

EPSS: 0.02%

updated 2026-01-16T18:34:24.440000

2 posts

jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.0.0, user control of the first argument of the loadFile method in the node.js build allows local file inclusion/path traversal. If given the possibility to pass unsanitized paths to the loadFile method, a user can retrieve file contents of arbitrary files in the local file system the node process is running in. The file contents

2 repos

https://github.com/Nurjaman2004/jsPDF-Bulk-Detector-CVE-2025-68428-

https://github.com/12nio/CVE-2025-68428_PoC

CVE-2026-0915(CVSS UNKNOWN)

EPSS: 0.02%

updated 2026-01-16T18:32:34

3 posts

Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend for networks and queries for a zero-valued network in the GNU C Library version 2.0 to version 2.42 can leak stack contents to the configured DNS resolver.

CVE-2025-70753
(7.5 HIGH)

EPSS: 0.04%

updated 2026-01-16T18:32:29

1 posts

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security_5g parameter of the sub_4CA50 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

CVE-2025-71027
(7.5 HIGH)

EPSS: 0.04%

updated 2026-01-16T18:32:29

1 posts

Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

CVE-2025-71024
(7.5 HIGH)

EPSS: 0.04%

updated 2026-01-16T18:32:29

1 posts

Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the serviceName2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

CVE-2025-71025
(7.5 HIGH)

EPSS: 0.04%

updated 2026-01-16T18:24:25.410000

1 posts

Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the cloneType2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

CVE-2025-71026
(7.5 HIGH)

EPSS: 0.04%

updated 2026-01-16T18:23:52.100000

1 posts

Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanSpeed2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

CVE-2026-22026
(7.5 HIGH)

EPSS: 0.05%

updated 2026-01-16T16:43:52.067000

1 posts

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. Prior to version 1.4.3, the libcurl write_callback function in the KMC crypto service client allows unbounded memory growth by reallocating response buffers without any

CVE-2026-22697
(7.5 HIGH)

EPSS: 0.10%

updated 2026-01-16T16:42:26.080000

1 posts

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. Prior to version 1.4.3, CryptoLib’s KMC crypto service integration is vulnerable to a heap buffer overflow when decoding Base64-encoded ciphertext/cleartext fields retur

CVE-2026-22025
(3.7 LOW)

EPSS: 0.05%

updated 2026-01-16T16:39:52.060000

1 posts

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. Prior to version 1.4.3, when the KMC server returns a non-200 HTTP status code, cryptography_encrypt() and cryptography_decrypt() return immediately without freeing prev

CVE-2026-20965
(7.5 HIGH)

EPSS: 0.04%

updated 2026-01-16T16:23:11.237000

2 posts

Improper verification of cryptographic signature in Windows Admin Center allows an authorized attacker to elevate privileges locally.

CVE-2025-67077
(8.8 HIGH)

EPSS: 0.04%

updated 2026-01-16T16:15:53.863000

1 posts

File upload vulnerability in Omnispace Agora Project before 25.10 allowing authenticated, or under certain conditions also guest users, via the UploadTmpFile action.

CVE-2026-20944
(8.4 HIGH)

EPSS: 0.03%

updated 2026-01-16T16:15:25.740000

1 posts

Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVE-2026-22639
(4.3 MEDIUM)

EPSS: 0.03%

updated 2026-01-16T15:55:33.063000

1 posts

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01, 11.5.5+security-01, 11.6.2+security-01 and 12.0.1+security-01

CVE-2026-22920
(3.7 LOW)

EPSS: 0.03%

updated 2026-01-16T15:55:33.063000

1 posts

The device's passwords have not been adequately salted, making them vulnerable to password extraction attacks.

CVE-2026-22644
(5.3 MEDIUM)

EPSS: 0.06%

updated 2026-01-16T15:55:33.063000

1 posts

Certain requests pass the authentication token in the URL as string query parameter, making it vulnerable to theft through server logs, proxy logs and Referer headers, which could allow an attacker to hijack the user's session and gain unauthorized access.

CVE-2026-22919
(3.8 LOW)

EPSS: 0.03%

updated 2026-01-16T15:55:33.063000

1 posts

An attacker with administrative access may inject malicious content into the login page, potentially enabling cross-site scripting (XSS) attacks, leading to the extraction of sensitive data.

CVE-2026-22907
(9.9 CRITICAL)

EPSS: 0.06%

updated 2026-01-16T15:55:33.063000

1 posts

An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read and modify system data.

CVE-2026-22913
(4.3 MEDIUM)

EPSS: 0.03%

updated 2026-01-16T15:55:33.063000

1 posts

Improper handling of a URL parameter may allow attackers to execute code in a user's browser after login. This can lead to the extraction of sensitive data.

CVE-2026-22915
(4.3 MEDIUM)

EPSS: 0.03%

updated 2026-01-16T15:55:33.063000

1 posts

An attacker with low privileges may be able to read files from specific directories on the device, potentially exposing sensitive information.

CVE-2026-22641
(5.0 MEDIUM)

EPSS: 0.02%

updated 2026-01-16T15:55:33.063000

1 posts

This vulnerability in Grafana's datasource proxy API allows authorization checks to be bypassed by adding an extra slash character in the URL path. Users with minimal permissions could gain unauthorized read access to GET endpoints in Alertmanager and Prometheus datasources. The issue primarily affects datasources that implement route-specific permissions, including Alertmanager and certain Promet

CVE-2026-22916
(4.3 MEDIUM)

EPSS: 0.04%

updated 2026-01-16T15:55:33.063000

1 posts

An attacker with low privileges may be able to trigger critical system functions such as reboot or factory reset without proper restrictions, potentially leading to service disruption or loss of configuration.

CVE-2026-22909
(7.5 HIGH)

EPSS: 0.05%

updated 2026-01-16T15:55:33.063000

1 posts

Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentially disrupting system operations.

CVE-2026-22917
(4.3 MEDIUM)

EPSS: 0.06%

updated 2026-01-16T15:55:33.063000

1 posts

Improper input handling in a system endpoint may allow attackers to overload resources, causing a denial of service.

CVE-2026-22912
(4.3 MEDIUM)

EPSS: 0.07%

updated 2026-01-16T15:55:33.063000

1 posts

Improper validation of a login parameter may allow attackers to redirect users to malicious websites after authentication. This can lead to various risk including stealing credentials from unsuspecting users.

CVE-2026-22914
(4.3 MEDIUM)

EPSS: 0.02%

updated 2026-01-16T15:55:33.063000

1 posts

An attacker with limited permissions may still be able to write files to specific locations on the device, potentially leading to system manipulation.

CVE-2026-22855
(0 None)

EPSS: 0.04%

updated 2026-01-16T15:55:33.063000

1 posts

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bounds read occurs in the smartcard SetAttrib path when cbAttrLen does not match the actual NDR buffer length. This vulnerability is fixed in 3.20.1.

CVE-2026-22851
(0 None)

EPSS: 0.04%

updated 2026-01-16T15:55:33.063000

1 posts

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race condition between the RDPGFX dynamic virtual channel thread and the SDL render thread leads to a heap use-after-free. Specifically, an escaped pointer to sdl->primary (SDL_Surface) is accessed after it has been freed during RDPGFX ResetGraphics handling. This vulnerability is fixed in 3.20.1.

CVE-2026-22856
(0 None)

EPSS: 0.04%

updated 2026-01-16T15:55:33.063000

1 posts

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP thread tracking allows a heap use‑after‑free when one thread removes an entry from serial->IrpThreads while another reads it. This vulnerability is fixed in 3.20.1.

CVE-2026-23746
(0 None)

EPSS: 0.56%

updated 2026-01-16T15:55:12.257000

1 posts

Entrust Instant Financial Issuance (IFI) On Premise software (formerly referred to as CardWizard) versions 5.x, prior to 6.10.5, and prior to 6.11.1 contain an insecure .NET Remoting exposure in the SmartCardController service (DCG.SmartCardControllerService.exe). The service registers a TCP remoting channel with unsafe formatter/settings that permit untrusted remoting object invocation. A remote,

CVE-2025-9014
(0 None)

EPSS: 0.09%

updated 2026-01-16T15:55:12.257000

1 posts

A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-Link TL-WR841N v14, caused by improper input validation.  A remote, unauthenticated attacker can exploit this flaw and cause Denial of Service on the web portal service.This issue affects TL-WR841N v14: before 250908.

CVE-2025-67822
(9.4 CRITICAL)

EPSS: 0.26%

updated 2026-01-16T15:32:28

1 posts

A vulnerability in the Provisioning Manager component of Mitel MiVoice MX-ONE 7.3 (7.3.0.0.50) through 7.8 SP1 (7.8.1.0.14) could allow an unauthenticated attacker to conduct an authentication bypass attack due to improper authentication mechanisms. A successful exploit could allow an attacker to gain unauthorized access to user or admin accounts in the system.

CVE-2025-67823
(8.2 HIGH)

EPSS: 0.04%

updated 2026-01-16T15:32:28

1 posts

A vulnerability in the Multimedia Email component of Mitel MiContact Center Business through 10.2.0.10 and Mitel CX through 1.1.0.1 could allow an unauthenticated attacker to conduct a Cross-Site Scripting (XSS) attack due to insufficient input validation. A successful exploit requires user interaction where the email channel is enabled. This could allow an attacker to execute arbitrary scripts in

CVE-2025-68707
(8.8 HIGH)

EPSS: 0.04%

updated 2026-01-16T15:32:28

1 posts

An authentication bypass vulnerability in the Tongyu AX1800 Wi-Fi 6 Router with firmware 1.0.0 allows unauthenticated network-adjacent attackers to perform arbitrary configuration changes without providing credentials, as long as a valid admin session is active. This can result in full compromise of the device (i.e., via unauthenticated access to /boaform/formSaveConfig and /boaform/admin endpoint

CVE-2025-66169
(5.3 MEDIUM)

EPSS: 0.11%

updated 2026-01-16T14:29:11.873000

1 posts

Cypher Injection vulnerability in Apache Camel camel-neo4j component. This issue affects Apache Camel: from 4.10.0 before 4.10.8, from 4.14.0 before 4.14.3, from 4.15.0 before 4.17.0 Users are recommended to upgrade to version 4.10.8 for 4.10.x LTS and 4.14.3 for 4.14.x LTS and 4.17.0.

CVE-2025-20393
(10.0 CRITICAL)

EPSS: 4.13%

updated 2026-01-16T14:00:12.647000

3 posts

A vulnerability in the Spam Quarantine feature of Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager could allow an unauthenticated, remote attacker to execute arbitrary system commands on an affected device with root privileges. This vulnerability is due to insufficient validation of HTTP requests by the Spam Quarantine feature. An attacker could explo

7 repos

https://github.com/StasonJatham/cisco-sa-sma-attack-N9bf4

https://github.com/KingHacker353/CVE-2025-20393

https://github.com/Ashwesker/Ashwesker-CVE-2025-20393

https://github.com/MRH701/cisco-sa-sma-attack-N9bf4

https://github.com/cyberleelawat/CVE-2025-20393

https://github.com/cyberdudebivash/CYBERDUDEBIVASH-Cisco-AsyncOS-CVE-2025-20393-Scanner

https://github.com/MRH701/mrh701.github.io

CVE-2026-21899
(4.7 MEDIUM)

EPSS: 0.06%

updated 2026-01-15T21:45:24.500000

1 posts

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. Prior to version 1.4.3, in base64urlDecode, padding-stripping dereferences input[inputLen - 1] before checking that inputLen > 0 or that input != NULL. For inputLen == 0

CVE-2026-22027
(6.0 MEDIUM)

EPSS: 0.02%

updated 2026-01-15T21:45:02.797000

1 posts

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. Prior to version 1.4.3, the convert_hexstring_to_byte_array() function in the MariaDB SA interface writes decoded bytes into a caller-provided buffer without any capacit

CVE-2025-69260
(7.5 HIGH)

EPSS: 0.26%

updated 2026-01-15T21:32:45

1 posts

A message out-of-bounds read vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-of-service condition on affected installations. Please note: authentication is not required in order to exploit this vulnerability.

CVE-2026-0227(CVSS UNKNOWN)

EPSS: 0.07%

updated 2026-01-15T21:31:54

8 posts

A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (DoS) to the firewall. Repeated attempts to trigger this issue results in the firewall entering into maintenance mode.

1 repos

https://github.com/CkAbhijit/CVE-2026-0227-Advanced-Scanner

CVE-2025-36911
(7.1 HIGH)

EPSS: 0.00%

updated 2026-01-15T21:31:47

4 posts

In key-based pairing, there is a possible ID due to a logic error in the code. This could lead to remote (proximal/adjacent) information disclosure of user's conversations and location with no additional execution privileges needed. User interaction is not needed for exploitation.

5 repos

https://github.com/Cedric-Martz/CVE-2025-36911_scan

https://github.com/SpectrixDev/DIY_WhisperPair

https://github.com/SteamPunk424/CVE-2025-36911-Wisper_Pair_Target_Finder-

https://github.com/zalexdev/wpair-app

https://github.com/ap425q/whisper-pair

CVE-2026-21441
(7.5 HIGH)

EPSS: 0.02%

updated 2026-01-15T19:21:06.850000

1 posts

urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the

CVE-2025-69259
(7.5 HIGH)

EPSS: 0.30%

updated 2026-01-15T19:14:24.493000

1 posts

A message unchecked NULL return value vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-of-service condition on affected installations. Please note: authentication is not required in order to exploit this vulnerability..

CVE-2026-0712
(7.6 HIGH)

EPSS: 0.04%

updated 2026-01-15T15:31:35

1 posts

An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve XSS attacks. The vulnerability was introduced in Grafana v11.5.0. The open redirect can be chained with path traversal vulnerabilities to achieve XSS. Fixed in versions 12.0.2+security-01, 11.6.3+security-01, 11.5.6+security-01, 11.4.6+security-01 and 11.3.8+security-01

CVE-2026-22643
(8.3 HIGH)

EPSS: 0.07%

updated 2026-01-15T15:31:35

1 posts

In Grafana, an excessively long dashboard title or panel name will cause Chromium browsers to become unresponsive due to Improper Input Validation vulnerability in Grafana. This issue affects Grafana: before 11.6.2 and is fixed in 11.6.2 and higher.

CVE-2026-22638
(8.3 HIGH)

EPSS: 0.03%

updated 2026-01-15T15:31:33

1 posts

A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path traversal and open redirect. This allows attackers to redirect users to a website that hosts a frontend plugin that will execute arbitrary JavaScript. This vulnerability does not require editor permissions and if anonymous access is enabled, the XSS will work. If the Grafana Image Renderer plugin is inst

CVE-2026-22910
(7.5 HIGH)

EPSS: 0.04%

updated 2026-01-15T15:31:30

1 posts

The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This represents a high risk to the integrity of the system.

CVE-2026-22908
(9.1 CRITICAL)

EPSS: 0.15%

updated 2026-01-15T15:31:27

1 posts

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality.

CVE-2026-22642
(4.2 MEDIUM)

EPSS: 0.03%

updated 2026-01-15T15:31:27

1 posts

An open redirect vulnerability has been identified in Grafana OSS organization switching functionality. Prerequisites for exploitation: - Multiple organizations must exist in the Grafana instance - Victim must be on a different organization than the one specified in the URL