CVE ID :CVE-2026-40189 Published : April 10, 2026, 8:16 p.m. | 4 hours, 23 minutes ago Description :goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.4, goshs enforces the documented per-folder .goshs ACL/basic-auth…
CVE-2026-40177 – Password bypass when 2FA is activated
CVE ID :CVE-2026-40177 Published : April 10, 2026, 8:16 p.m. | 4 hours, 23 minutes ago Description :ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the…
CVE-2026-40175 – Axios has Unrestricted Cloud Metadata Exfiltration via Header Injection Chain
CVE ID :CVE-2026-40175 Published : April 10, 2026, 8:16 p.m. | 4 hours, 23 minutes ago Description :Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0, the Axios…
CVE-2026-40168 – Postiz has Server-Side Request Forgery via Redirect Bypass in /api/public/stream
CVE ID :CVE-2026-40168 Published : April 10, 2026, 8:16 p.m. | 4 hours, 23 minutes ago Description :Postiz is an AI social media scheduling tool. Prior to 2.21.5, the /api/public/stream endpoint is vulnerable to…
CVE-2026-33707 – Weak Password Recovery Mechanism for Forgotten Password in chamilo/chamilo-lms
CVE ID :CVE-2026-33707 Published : April 10, 2026, 7:16 p.m. | 5 hours, 23 minutes ago Description :Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, the default password reset mechanism…
CVE-2026-5992 – Tenda F451 P2pListFilter fromP2pListFilter stack-based overflow
CVE ID :CVE-2026-5992 Published : April 10, 2026, 12:16 a.m. | 22 minutes ago Description :A vulnerability was determined in Tenda F451 1.0.0.7. This affects the function fromP2pListFilter of the file /goform/P2pListFilter. This…
CVE-2026-5991 – Tenda F451 WrlExtraSet formWrlExtraSet stack-based overflow
CVE ID :CVE-2026-5991 Published : April 10, 2026, 12:16 a.m. | 22 minutes ago Description :A vulnerability was found in Tenda F451 1.0.0.7. Affected by this issue is the function formWrlExtraSet of the…
CVE-2026-5990 – Tenda F451 SafeEmailFilter fromSafeEmailFilter stack-based overflow
CVE ID :CVE-2026-5990 Published : April 10, 2026, 12:16 a.m. | 22 minutes ago Description :A vulnerability has been found in Tenda F451 1.0.0.7. Affected by this vulnerability is the function fromSafeEmailFilter of…
CVE-2026-5989 – Tenda F451 RouteStatic fromRouteStatic stack-based overflow
CVE ID :CVE-2026-5989 Published : April 10, 2026, 12:16 a.m. | 22 minutes ago Description :A flaw has been found in Tenda F451 1.0.0.7. Affected is the function fromRouteStatic of the file /goform/RouteStatic….
CVE-2026-5988 – Tenda F451 AdvSetWrlsafeset formWrlsafeset stack-based overflow
CVE ID :CVE-2026-5988 Published : April 9, 2026, 11:17 p.m. | 1 hour, 22 minutes ago Description :A vulnerability was detected in Tenda F451 1.0.0.7. This impacts the function formWrlsafeset of the file /goform/AdvSetWrlsafeset….