🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2019-25699 | High | 7.1 |
Newsbull Haber Script 1.0.0 contains multiple SQL injection vulnerabilities in the search parameter that allow authentic…
|
⚡ Exploit | Apr 12, 2026 |
| CVE-2019-25703 | High | 7.1 |
ImpressCMS 1.3.11 contains a time-based blind SQL injection vulnerability that allows authenticated attackers to manipul…
|
⚡ Exploit | Apr 12, 2026 |
| CVE-2019-25707 | High | 7.1 |
eBrigade ERP 4.5 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL qu…
|
⚡ Exploit | Apr 12, 2026 |
| CVE-2019-25713 | High | 7.1 |
MyT-PM 1.5.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL querie…
|
⚡ Exploit | Apr 12, 2026 |
| CVE-2026-5144 | High | 8.8 |
The BuddyPress Groupblog plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including…
|
— | Apr 11, 2026 |
| CVE-2026-6105 | High | 7.3 |
A security vulnerability has been detected in perfree go-fastdfs-web up to 1.3.7. This affects an unknown part of the fi…
|
— | Apr 11, 2026 |
| CVE-2026-5217 | High | 7.2 |
The Optimole – Optimize Images | Convert WebP & AVIF | CDN & Lazy Load | Image Optimization plugin for WordPress is vuln…
|
— | Apr 11, 2026 |
| CVE-2026-5809 | High | 7.1 |
The wpForo Forum plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to and including 3.0.2. Th…
|
— | Apr 11, 2026 |
| CVE-2026-6014 | High | 8.8 |
A flaw has been found in D-Link DIR-513 1.10. This issue affects the function formAdvanceSetup of the file /goform/formA…
|
— | Apr 10, 2026 |
| CVE-2026-6012 | High | 8.8 |
A security vulnerability has been detected in D-Link DIR-513 1.10. This affects the function formSetPassword of the file…
|
— | Apr 10, 2026 |
| CVE-2026-35669 | High | 8.8 |
OpenClaw before 2026.3.25 contains a privilege escalation vulnerability in gateway-authenticated plugin HTTP routes that…
|
✅ Patch | Apr 10, 2026 |
| CVE-2026-35643 | High | 8.8 |
OpenClaw before 2026.3.22 contains an unvalidated WebView JavascriptInterface vulnerability allowing attackers to inject…
|
✅ Patch | Apr 10, 2026 |
| CVE-2026-5989 | High | 8.8 |
A flaw has been found in Tenda F451 1.0.0.7. Affected is the function fromRouteStatic of the file /goform/RouteStatic. E…
|
— | Apr 10, 2026 |
| CVE-2026-5991 | High | 8.8 |
A vulnerability was found in Tenda F451 1.0.0.7. Affected by this issue is the function formWrlExtraSet of the file /gof…
|
— | Apr 10, 2026 |
| CVE-2026-6013 | High | 8.8 |
A vulnerability was detected in D-Link DIR-513 1.10. This vulnerability affects the function formSetRoute of the file /g…
|
— | Apr 10, 2026 |
| CVE-2026-35663 | High | 8.8 |
OpenClaw before 2026.3.25 contains a privilege escalation vulnerability allowing non-admin operators to self-request bro…
|
✅ Patch | Apr 10, 2026 |
| CVE-2026-6015 | High | 8.8 |
A vulnerability has been found in Tenda AC9 15.03.02.13. Impacted is the function formQuickIndex of the file /goform/Qui…
|
— | Apr 10, 2026 |
| CVE-2026-5990 | High | 8.8 |
A vulnerability has been found in Tenda F451 1.0.0.7. Affected by this vulnerability is the function fromSafeEmailFilter…
|
— | Apr 10, 2026 |
| CVE-2026-6016 | High | 8.8 |
A vulnerability was found in Tenda AC9 15.03.02.13. The affected element is the function decodePwd of the file /goform/W…
|
— | Apr 10, 2026 |
| CVE-2026-5992 | High | 8.8 |
A vulnerability was determined in Tenda F451 1.0.0.7. This affects the function fromP2pListFilter of the file /goform/P2…
|
— | Apr 10, 2026 |