🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2017-20228 | High | 8.4 |
Flat Assembler 1.71.21 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbit…
|
⚡ Exploit | Mar 28, 2026 |
| CVE-2026-1679 | High | 7.3 |
The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; ove…
|
⚡ Exploit ✅ Patch | Mar 28, 2026 |
| CVE-2026-4974 | High | 8.8 |
A flaw has been found in Tenda AC7 15.03.06.44. Affected by this issue is the function fromSetSysTime of the file /gofor…
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2026-4975 | High | 8.8 |
A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcf…
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2026-4905 | High | 8.8 |
A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsO…
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2026-4906 | High | 8.8 |
A vulnerability was determined in Tenda AC5 15.03.06.47. The affected element is the function decodePwd of the file /gof…
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2026-33767 | High | 8.8 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, in `objects/like.php`, the `getLike(…
|
⚡ Exploit ✅ Patch | Mar 27, 2026 |
| CVE-2026-4904 | High | 8.8 |
A vulnerability has been found in Tenda AC5 15.03.06.47. This issue affects the function formSetCfm of the file /goform/…
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2026-33735 | High | 8.8 |
MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.69, an authorization bypas…
|
⚡ Exploit ✅ Patch | Mar 27, 2026 |
| CVE-2026-33941 | High | 8.2 |
Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, the Hand…
|
⚡ Exploit ✅ Patch | Mar 27, 2026 |
| CVE-2026-33935 | High | 7.5 |
MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.72, an unauthenticated att…
|
⚡ Exploit ✅ Patch | Mar 27, 2026 |
| CVE-2026-33867 | High | 7.5 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, AVideo allows content owners to pass…
|
⚡ Exploit ✅ Patch | Mar 27, 2026 |
| CVE-2026-33745 | High | 7.4 |
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.39.0, the cpp-httplib HTTP …
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2026-33670 | Critical | 9.8 |
SiYuan is a personal knowledge management system. Prior to version 3.6.2, the /api/file/readDir interface was used to tr…
|
⚡ Exploit | Mar 26, 2026 |
| CVE-2026-33669 | Critical | 9.8 |
SiYuan is a personal knowledge management system. Prior to version 3.6.2, document IDs were retrieved via the /api/file/…
|
⚡ Exploit | Mar 26, 2026 |
| CVE-2026-33152 | Critical | 9.1 |
Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. In versions prior t…
|
⚡ Exploit | Mar 26, 2026 |
| CVE-2026-4903 | High | 8.8 |
A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /gofo…
|
⚡ Exploit | Mar 26, 2026 |
| CVE-2026-33622 | High | 8.8 |
PinchTab is a standalone HTTP server that gives AI agents direct control over a Chrome browser. PinchTab `v0.8.3` throug…
|
⚡ Exploit | Mar 26, 2026 |
| CVE-2026-4902 | High | 8.8 |
A vulnerability was detected in Tenda AC5 15.03.06.47. This affects the function fromAddressNat of the file /goform/addr…
|
⚡ Exploit | Mar 26, 2026 |
| CVE-2026-33661 | High | 8.6 |
Pay is an open-source payment SDK extension package for various Chinese payment services. Prior to version 3.7.20, the `…
|
⚡ Exploit ✅ Patch | Mar 26, 2026 |