Common Vulnerabilities and Exposures (CVE)

CVE-2021-36214

Apr 9, 2026 05:41:29 UTC

LINE client for iOS before 10.16.3 allows cross site script with specific header in WebView.

CVE-2026-5849

Apr 9, 2026 05:30:15 UTC

A vulnerability was determined in Tenda i12 1.0.0.11(3862). The impacted element is an unknown function of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack may be launched remotely. The exploit has...

CVE-2026-5848

Apr 9, 2026 05:15:11 UTC

A vulnerability was found in jeecgboot JimuReport up to 2.3.0. The affected element is the function DriverManager.getConnection of the file /drag/onlDragDataSource/testConnection of the component Data Source Handler. Performing a manipulati...

CVE-2025-7376

Apr 9, 2026 05:10:54 UTC

Windows Shortcut Following (.LNK) vulnerability in multiple processes of Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric MobileHMI versions 10.97.3 ...

CVE-2025-0921

Apr 9, 2026 05:06:29 UTC

Execution with Unnecessary Privileges vulnerability in multiple services of Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric MobileHMI versions 10.97...

CVE-2026-5847

Apr 9, 2026 05:00:19 UTC

A vulnerability has been found in code-projects Movie Ticketing System 1.0. Impacted is an unknown function of the file /db/moviedb.sql of the component SQL Database Backup File Handler. Such manipulation leads to information disclosure. Th...

CVE-2026-5844

Apr 9, 2026 04:45:13 UTC

A vulnerability was found in D-Link DIR-882 1.01B02. Impacted is the function sprintf of the file prog.cgi of the component HNAP1 SetNetworkSettings Handler. The manipulation of the argument IPAddress results in os command injection. The at...

CVE-2026-5842

Apr 9, 2026 04:30:17 UTC

A security vulnerability has been detected in decolua 9router up to 0.3.47. The impacted element is an unknown function of the file /api of the component Administrative API Endpoint. The manipulation leads to authorization bypass. The attac...

CVE-2026-5841

Apr 9, 2026 04:15:19 UTC

A weakness has been identified in Tenda i3 1.0.0.6(2204). The affected element is the function R7WebsSecurityHandler of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack can be executed remotely. Th...

CVE-2026-5840

Apr 9, 2026 04:00:15 UTC

A security flaw has been discovered in PHPGurukul News Portal Project 4.1. Impacted is an unknown function of the file /admin/check_availability.php. Performing a manipulation of the argument Username results in sql injection. Remote exploi...

CVE-2026-30818

Apr 9, 2026 03:56:18 UTC

An OS command injection vulnerability in the dnsmasq module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to execute arbitrary code when a specially crafted configuration file is processed due to insufficient input v...

CVE-2026-30815

Apr 9, 2026 03:56:16 UTC

An OS command injection vulnerability in the OpenVPN module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to execute system commands when a specially crafted configuration file is processed due to insufficient input ...

CVE-2026-30814

Apr 9, 2026 03:56:15 UTC

A stack-based buffer overflow in the tmpServer module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to trigger a segmentation fault and potentially execute arbitrary code via a specially crafted configuration file. S...

CVE-2026-4837

Apr 9, 2026 03:56:12 UTC

An eval() injection vulnerability in the Rapid7 Insight Agent beaconing logic for Linux versions could theoretically allow an attacker to achieve remote code execution as root via a crafted beacon response. Because the Agent uses mutual TLS...

CVE-2026-5795

Apr 9, 2026 03:56:11 UTC

In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable. Upon returning from the initial checks, there are conditions that cause an early return from the JASPIAuthenticator co...