Where
-Infinity
0

Trending

Last week
Last month
Last year

TOTOLINK Totolink A8000RUTotolink A8000RU Web Management cstecgi.cgi setStaticDhcpRules os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9408

TOTOLINK A8000RUTotolink A8000RU Web Management cstecgi.cgi setFirewallType os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9407

TOTOLINK A8000RUTotolink A8000RU Web Management cstecgi.cgi setRemoteCfg os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9406

TOTOLINK A8000RUTotolink A8000RU Web Management cstecgi.cgi setGameSpeedCfg os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9405

TOTOLINK A8000RUTotolink A8000RU Web Management cstecgi.cgi setDdnsCfg os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9404
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

TOTOLINK A8000RUTotolink A8000RU Web Management cstecgi.cgi setScheduleCfg os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9388

TOTOLINK A8000RUTotolink A8000RU Web Management cstecgi.cgi setUpgradeFW os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9387

TOTOLINK Totolink A8000RUTotolink A8000RU Web Management cstecgi.cgi setLanguageCfg os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9386

TOTOLINK A8000RUTotolink A8000RU Web Management cstecgi.cgi setTracerouteCfg os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9385

TOTOLINK A8000RUTotolink A8000RU Web Management cstecgi.cgi setDiagnosisCfg os command injection

Risk 87
Severity
9.8
First published (updated )
CVE-2026-9384
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

dolibarr Dolibarr ERP CRMDolibarr ERP CRM 7.0.3 Remote Code Evaluation via install/step1.php

Risk 86
Severity
9.8
First published (updated )
CVE-2018-25357

userSpice userSpiceuserSpice 4.3.24 Username Enumeration via existingUsernameCheck.php

Risk 86
Severity
9.8
First published (updated )
CVE-2018-25350

go/github.com/nezhahq/nezhaOS Command Injection, Command Injection, SSRF

Risk 82
Severity
9.9
First published (updated )
Advisory
GHSA-99gv-2m7h-3hh9

go/github.com/nezhahq/nezhaOS Command Injection, Command Injection, SSRF

Risk 82
Severity
9.9
First published (updated )
CVE-2026-46716

SunshineSunshine: Authentication bypass via improper client certificate validation

Risk 86
Severity
9.8
First published (updated )
CVE-2026-32253
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Typebot TypebotTypeBot: Unauthenticated SSRF via isolated-vm fetch in preview chat endpoint bypasses SSRF controls

Risk 73
Severity
10
First published (updated )
CVE-2026-33712

composer/yeswiki/yeswikiSQL Injection

Risk 86
Severity
9.8
First published (updated )
CVE-2026-46670

composer/yeswiki/yeswikiSQL Injection

Risk 86
Severity
9.8
First published (updated )
Advisory
GHSA-jwvv-qr7q-cv8j

Syslink Software AvantraInsecure session handling on metrics web server

Risk 58
Severity
9.6
EPSS
0.04%
First published (updated )
CVE-2026-8670

CVE-2026-9054Invalid IP packets cause a kernel panic

Risk 35
Severity
9.2
EPSS
0.04%
First published (updated )
CVE-2026-9054
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Ubiquiti UniFi OSInput Validation, Command Injection

Risk 90
Severity
10
First published (updated )
CVE-2026-34910

Ubiquiti UniFi OSPath Traversal

Risk 90
Severity
10
First published (updated )
CVE-2026-34909

Ubiquiti UniFi OSA malicious actor with access to the network could exploit an Improper Access Control vulnerability …

Risk 90
Severity
10
First published (updated )
CVE-2026-34908

Ubiquiti UniFi OSInput Validation, Command Injection

Risk 75
Severity
9.1
First published (updated )
CVE-2026-33000

go/github.com/boxlite-ai/boxlite/sdks/goPath Traversal

Risk 80
Severity
9.6
First published (updated )
CVE-2026-46703
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

go/github.com/boxlite-ai/boxlite/sdks/goPath Traversal

Risk 80
Severity
9.6
First published (updated )
Advisory
GHSA-f396-4rp4-7v2j

rust/boxlite-cliRace Condition

Risk 73
Severity
10
First published (updated )
CVE-2026-46695

rust/boxlite-cliRace Condition

Risk 73
Severity
10
First published (updated )
Advisory
GHSA-g6ww-w5j2-r7x3

BookingPress BookingPress ProBookingPress Pro <= 5.6 - Unauthenticated Arbitrary File Upload via Signature Custom Field

Risk 86
Severity
9.8
First published (updated )
CVE-2026-6960

go/github.com/fission/fission### Summary The Fission router registers an internal-style route — `/fission-function/<name>` and `…

Risk 86
Severity
9.8
First published (updated )
CVE-2026-46614
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203