🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-4905 | High | 8.8 |
A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsO…
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2026-4904 | High | 8.8 |
A vulnerability has been found in Tenda AC5 15.03.06.47. This issue affects the function formSetCfm of the file /goform/…
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2019-25651 | High | 8.3 |
Ubiquiti UniFi Network Controller prior to 5.10.12 (excluding 5.6.42), UAP FW prior to 4.0.6, UAP-AC, UAP-AC v2, and UAP…
|
— | Mar 27, 2026 |
| CVE-2026-33941 | High | 8.2 |
Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, the Hand…
|
⚡ Exploit ✅ Patch | Mar 27, 2026 |
| CVE-2026-4248 | High | 8.0 |
The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and incl…
|
— | Mar 27, 2026 |
| CVE-2026-27309 | High | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbi…
|
— | Mar 27, 2026 |
| CVE-2019-25652 | High | 7.5 |
UniFi Network Controller before version 5.10.22 and 5.11.x before 5.11.18 contains an improper certificate verification …
|
— | Mar 27, 2026 |
| CVE-2026-33935 | High | 7.5 |
MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.72, an unauthenticated att…
|
⚡ Exploit ✅ Patch | Mar 27, 2026 |
| CVE-2026-34388 | High | 7.5 |
Fleet is open source device management software. Prior to 4.81.0, a denial-of-service vulnerability in Fleet's gRPC Laun…
|
— | Mar 27, 2026 |
| CVE-2026-33699 | High | 7.5 |
pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attack…
|
✅ Patch | Mar 27, 2026 |
| CVE-2026-26061 | High | 7.5 |
Fleet is open source device management software. Prior to 4.81.0, Fleet contained multiple unauthenticated HTTP endpoint…
|
— | Mar 27, 2026 |
| CVE-2026-34391 | High | 7.5 |
Fleet is open source device management software. Prior to 4.81.1, a vulnerability in Fleet's Windows MDM command process…
|
— | Mar 27, 2026 |
| CVE-2026-33867 | High | 7.5 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, AVideo allows content owners to pass…
|
⚡ Exploit ✅ Patch | Mar 27, 2026 |
| CVE-2026-33871 | High | 7.5 |
Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.132.Final and 4.2.10.Fina…
|
— | Mar 27, 2026 |
| CVE-2026-33745 | High | 7.4 |
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.39.0, the cpp-httplib HTTP …
|
⚡ Exploit | Mar 27, 2026 |
| CVE-2026-4956 | High | 7.3 |
A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. The affected element is an unknown f…
|
— | Mar 27, 2026 |
| CVE-2026-4955 | High | 7.3 |
A vulnerability was found in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. This impacts an unknown function of the…
|
— | Mar 27, 2026 |
| CVE-2026-4908 | High | 7.3 |
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This affects an unknown function of the …
|
— | Mar 27, 2026 |
| CVE-2026-4959 | High | 7.3 |
A vulnerability was found in OpenBMB XAgent 1.0.0. This impacts the function check_user of the file XAgentServer/applica…
|
— | Mar 27, 2026 |
| CVE-2026-4903 | High | 8.8 |
A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /gofo…
|
⚡ Exploit | Mar 26, 2026 |