🛡️ CVE Intelligence Center

Common Vulnerabilities & Exposures — Security Intelligence Database

CVE ID	Severity	CVSS	Description	Status	Published
CVE-2026-34822	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the new_cert_name parameter to /man…	—	Apr 2, 2026
CVE-2026-34821	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/vpn…	—	Apr 2, 2026
CVE-2026-34820	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/ips…	—	Apr 2, 2026
CVE-2026-34819	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the REMARK parameter to /cgi-bin/op…	—	Apr 2, 2026
CVE-2026-34818	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dns…	—	Apr 2, 2026
CVE-2026-34817	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the ADDRESS BCC parameter to /cgi-b…	—	Apr 2, 2026
CVE-2026-34804	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the dscp parameter to /manage/qos/r…	—	Apr 2, 2026
CVE-2026-34813	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the user parameter to /cgi-bin/prox…	—	Apr 2, 2026
CVE-2026-34805	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/dn…	—	Apr 2, 2026
CVE-2026-34810	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/vp…	—	Apr 2, 2026
CVE-2026-34811	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/xt…	—	Apr 2, 2026
CVE-2026-34802	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark user ham spam parameter …	—	Apr 2, 2026
CVE-2026-0688	Medium	6.4	The Webmention plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5…	—	Apr 2, 2026
CVE-2026-34812	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the mimetypes parameter to /cgi-bin…	—	Apr 2, 2026
CVE-2026-34816	Medium	6.4	Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the domain parameter to /manage/smt…	—	Apr 2, 2026
CVE-2026-5352	Medium	6.3	A security vulnerability has been detected in Trendnet TEW-657BRM 1.00.1. This impacts the function Edit of the file /se…	—	Apr 2, 2026
CVE-2026-5344	Medium	6.3	A security vulnerability has been detected in Textpattern up to 4.9.1. Affected by this vulnerability is the function mt…	—	Apr 2, 2026
CVE-2026-5328	Medium	6.3	A weakness has been identified in shsuishang modulithshop up to 829bac71f507e84684c782b9b062b8bf3b5585d6. The impacted e…	—	Apr 2, 2026
CVE-2026-5317	Medium	6.3	A security flaw has been discovered in Nothings stb up to 1.22. This affects the function start_decoder of the file stb_…	—	Apr 2, 2026
CVE-2026-5351	Medium	6.3	A weakness has been identified in Trendnet TEW-657BRM 1.00.1. This affects the function add_wps_client of the file /setu…	—	Apr 2, 2026

← Prev 1…58 59 60 61 62…249 Next →

🛡️ CVE Intelligence Center

Introduce Yourself

Sign In Required