CVE ID :CVE-2026-29522 Published : March 16, 2026, 9:16 p.m. | 2 hours, 52 minutes ago Description :ZwickRoell Test Data Management versions prior to 3.0.8 contain a local file inclusion (LFI) vulnerability in the /server/node_upgrade_srv.js…
CVE-2026-32267 – Craft CMS Vulnerable to Privilege Escalation/Bypass through UsersController->actionImpersonateWithToken()
CVE ID :CVE-2026-32267 Published : March 16, 2026, 8:16 p.m. | 3 hours, 52 minutes ago Description :Craft CMS is a content management system (CMS). From version 4.0.0-RC1 to before version 4.17.6 and from…
CVE-2026-32264 – Craft CMS vulnerable to behavior injection RCE ElementIndexesController and FieldsController
CVE ID :CVE-2026-32264 Published : March 16, 2026, 8:16 p.m. | 3 hours, 52 minutes ago Description :Craft CMS is a content management system (CMS). From version 4.0.0-RC1 to before version 4.17.5 and from…
CVE-2026-32263 – Craft CMS vulnerable to behavior injection RCE via EntryTypesController
CVE ID :CVE-2026-32263 Published : March 16, 2026, 8:16 p.m. | 3 hours, 52 minutes ago Description :Craft CMS is a content management system (CMS). From version 5.6.0 to before version 5.9.11, in src/controllers/EntryTypesController.php,…
CVE-2026-30881 – Chamilo LMS: SQL Injection in the statistics AJAX endpoint
CVE ID :CVE-2026-30881 Published : March 16, 2026, 8:16 p.m. | 3 hours, 52 minutes ago Description :Chamilo LMS is a learning management system. Version 1.11.34 and prior contains a SQL Injection vulnerability in…
CVE-2017-20224 – Telesquare SKT LTE Router SDT-CS3B1 WebDAV Arbitrary File Upload
CVE ID :CVE-2017-20224 Published : March 16, 2026, 1:28 a.m. | 38 minutes ago Description :Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to…
CVE-2017-20223 – Telesquare SKT LTE Router SDT-CS3B1 Insecure Direct Object Reference
CVE ID :CVE-2017-20223 Published : March 16, 2026, 1:28 a.m. | 38 minutes ago Description :Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0 contains an insecure direct object reference vulnerability that allows attackers…
CVE-2017-20222 – Telesquare SKT LTE Router SDT-CS3B1 Unauthenticated Remote Reboot
CVE ID :CVE-2017-20222 Published : March 16, 2026, 1:28 a.m. | 38 minutes ago Description :Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to…
CVE-2015-20120 – RealtyScript 4.0.2 Multiple Time-based Blind SQL Injection
CVE ID :CVE-2015-20120 Published : March 15, 2026, 6:35 p.m. | 5 hours, 30 minutes ago Description :Next Click Ventures RealtyScript 4.0.2 contains multiple time-based blind SQL injection vulnerabilities that allow unauthenticated attackers to…
CVE-2017-20220 – Serviio PRO 1.8 Unauthenticated Password Change via REST API
CVE ID :CVE-2017-20220 Published : March 15, 2026, 6:34 p.m. | 5 hours, 31 minutes ago Description :Serviio PRO 1.8 contains an improper access control vulnerability in the Configuration REST API that allows unauthenticated…