CVE ID :CVE-2026-6138 Published : April 13, 2026, 12:16 a.m. | 23 minutes ago Description :A flaw has been found in Totolink A7100RU 7.4cu.2313_b20191024. The impacted element is the function setAccessDeviceCfg of the…
CVE-2026-6137 – Tenda F451 AdvSetWan fromAdvSetWan stack-based overflow
CVE ID :CVE-2026-6137 Published : April 13, 2026, 12:16 a.m. | 23 minutes ago Description :A vulnerability was detected in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the function fromAdvSetWan of the file…
CVE-2026-6136 – Tenda F451 L7Im frmL7ImForm stack-based overflow
CVE ID :CVE-2026-6136 Published : April 13, 2026, 12:16 a.m. | 23 minutes ago Description :A security vulnerability has been detected in Tenda F451 1.0.0.7_cn_svn7958. Impacted is the function frmL7ImForm of the file…
CVE-2026-6135 – Tenda F451 SetIpBind fromSetIpBind stack-based overflow
CVE ID :CVE-2026-6135 Published : April 13, 2026, 12:16 a.m. | 23 minutes ago Description :A weakness has been identified in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromSetIpBind of the file…
CVE-2026-6134 – Tenda F451 qossetting fromqossetting stack-based overflow
CVE ID :CVE-2026-6134 Published : April 12, 2026, 11:16 p.m. | 1 hour, 23 minutes ago Description :A security flaw has been discovered in Tenda F451 1.0.0.7_cn_svn7958. This vulnerability affects the function fromqossetting of…
CVE-2026-31845 – Rukovoditel CRM Zadarma Telephony API Reflected XSS
CVE ID :CVE-2026-31845 Published : April 11, 2026, 7:16 p.m. | 5 hours, 23 minutes ago Description :A reflected cross-site scripting (XSS) vulnerability exists in Rukovoditel CRM version 3.6.4 and earlier in the Zadarma…
CVE-2026-34621 – Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes (‘Prototype Pollution’) (CWE-1321)
CVE ID :CVE-2026-34621 Published : April 11, 2026, 7:16 a.m. | 17 hours, 23 minutes ago Description :Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype…
CVE-2026-5144 – BuddyPress Groupblog <= 1.9.3 – Authenticated (Subscriber+) Privilege Escalation to Administrator via Group Blog IDOR
CVE ID :CVE-2026-5144 Published : April 11, 2026, 2:16 a.m. | 22 hours, 23 minutes ago Description :The BuddyPress Groupblog plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and…
CVE-2026-5059 – aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability
CVE ID :CVE-2026-5059 Published : April 11, 2026, 1:16 a.m. | 23 hours, 23 minutes ago Description :aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary…
CVE-2026-5058 – aws-mcp-server Command Injection Remote Code Execution Vulnerability
CVE ID :CVE-2026-5058 Published : April 11, 2026, 1:16 a.m. | 23 hours, 23 minutes ago Description :aws-mcp-server Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on…