CVE ID :CVE-2026-4905 Published : March 27, 2026, 12:16 a.m. | 18 minutes ago Description :A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsOOB of…
CVE-2026-4904 – Tenda AC5 POST Request setcfm formSetCfm stack-based overflow
CVE ID :CVE-2026-4904 Published : March 27, 2026, 12:16 a.m. | 18 minutes ago Description :A vulnerability has been found in Tenda AC5 15.03.06.47. This issue affects the function formSetCfm of the file…
CVE-2026-33945 – Abitrary file write through systemd-creds option
CVE ID :CVE-2026-33945 Published : March 27, 2026, 12:16 a.m. | 18 minutes ago Description :Incus is a system container and virtual machine manager. Incus instances have an option to provide credentials to…
CVE-2026-33898 – Local Incus UI web server vulnerable to nuthentication bypass
CVE ID :CVE-2026-33898 Published : March 27, 2026, 12:16 a.m. | 18 minutes ago Description :Incus is a system container and virtual machine manager. Prior to version 6.23.0, the web server spawned by…
CVE-2026-27893 – vLLM’s hardcoded trust_remote_code=True in NemotronVL and KimiK25 bypasses user security opt-out
CVE ID :CVE-2026-27893 Published : March 27, 2026, 12:16 a.m. | 19 minutes ago Description :vLLM is an inference and serving engine for large language models (LLMs). Starting in version 0.10.1 and prior…
CVE-2026-4758 – WP Job Portal <= 2.4.9 – Authenticated (Subscriber+) Arbitrary File Deletion via Resume Custom File Field
CVE ID :CVE-2026-4758 Published : March 26, 2026, 12:16 a.m. | 18 minutes ago Description :The WP Job Portal plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path…
CVE-2026-34055 – OpenEMR has IDOR in Patient Notes Web UI allows unauthorized note access/modification
CVE ID :CVE-2026-34055 Published : March 26, 2026, 12:16 a.m. | 18 minutes ago Description :OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version…
CVE-2026-33917 – OpenEMR has SQL Injection in CAMOS Form
CVE ID :CVE-2026-33917 Published : March 26, 2026, 12:16 a.m. | 18 minutes ago Description :OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to…
CVE-2026-33348 – OpenEMR has Stored XSS in patient encounter Eye Exam form $CHRONIC2 and $CHRONIC3
CVE ID :CVE-2026-33348 Published : March 25, 2026, 11:17 p.m. | 1 hour, 17 minutes ago Description :OpenEMR is a free and open source electronic health records and medical practice management application. Users with…
CVE-2026-29187 – OpenEMR Vulnerable to Authenticated Blind Boolean-Based SQL Injection in new_search_popup.php
CVE ID :CVE-2026-29187 Published : March 25, 2026, 11:17 p.m. | 1 hour, 18 minutes ago Description :OpenEMR is a free and open source electronic health records and medical practice management application. Prior to…