CVE ID :CVE-2026-7057 Published : April 26, 2026, 10:17 p.m. | 1 hour, 56 minutes ago Description :A flaw has been found in Tenda F456 1.0.0.5. The affected element is an unknown function of…
CVE-2026-7056 – Tenda F456 httpd SafeUrlFilter fromSafeUrlFilter buffer overflow
CVE ID :CVE-2026-7056 Published : April 26, 2026, 10:17 p.m. | 1 hour, 56 minutes ago Description :A vulnerability was detected in Tenda F456 1.0.0.5. Impacted is the function fromSafeUrlFilter of the file /goform/SafeUrlFilter…
CVE-2026-7055 – Tenda F456 httpd VirtualSer fromVirtualSer buffer overflow
CVE ID :CVE-2026-7055 Published : April 26, 2026, 10:17 p.m. | 1 hour, 56 minutes ago Description :A security vulnerability has been detected in Tenda F456 1.0.0.5. This issue affects the function fromVirtualSer of…
CVE-2026-7054 – Tenda F456 httpd PPTPDClient fromPptpUserAdd buffer overflow
CVE ID :CVE-2026-7054 Published : April 26, 2026, 10:17 p.m. | 1 hour, 56 minutes ago Description :A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the…
CVE-2026-7053 – Tenda F456 httpd L7Prot frmL7ProtForm buffer overflow
CVE ID :CVE-2026-7053 Published : April 26, 2026, 10:17 p.m. | 1 hour, 56 minutes ago Description :A security flaw has been discovered in Tenda F456 1.0.0.5. This affects the function frmL7ProtForm of the…
CVE-2026-6992 – Linksys MR9600 JNAP Action run_central2.sh BTRequestGetSmartConnectStatus os command injection
CVE ID :CVE-2026-6992 Published : April 25, 2026, 6:16 p.m. | 5 hours, 57 minutes ago Description :A vulnerability was identified in Linksys MR9600 2.0.6.206937. This affects the function BTRequestGetSmartConnectStatus of the file /etc/init.d/run_central2.sh…
CVE-2026-6988 – Tenda HG10 Boa Service formRouting formRoute buffer overflow
CVE ID :CVE-2026-6988 Published : April 25, 2026, 6:16 p.m. | 5 hours, 57 minutes ago Description :A flaw has been found in Tenda HG10 HG7_HG9_HG10re_300001138_en_xpon. This issue affects the function formRoute of the…
CVE-2026-6951 – SimpleGit Remote Code Execution (RCE)
CVE ID :CVE-2026-6951 Published : April 25, 2026, 6:16 a.m. | 17 hours, 57 minutes ago Description :Versions of the package simple-git before 3.36.0 are vulnerable to Remote Code Execution (RCE) due to an…
CVE-2026-41478 – Saltcorn: SQL Injection via Unparameterized Sync Endpoints (maxLoadedId)
CVE ID :CVE-2026-41478 Published : April 24, 2026, 9:16 p.m. | 2 hours, 55 minutes ago Description :Saltcorn is an extensible, open source, no-code database application builder. Prior to 1.4.6, 1.5.6, and 1.6.0-beta.5, a…
CVE-2026-41473 – CyberPanel < 2.4.4 Unauthenticated API Access via AI Scanner Endpoints
CVE ID :CVE-2026-41473 Published : April 24, 2026, 9:16 p.m. | 2 hours, 55 minutes ago Description :CyberPanel versions prior to 2.4.4 contain an authentication bypass vulnerability in the AI Scanner worker API endpoints that…