Overview
- Totolink
- LR350
Description
Statistics
- 2 Posts
Fediverse
π CVE-2026-1155 - High (8.8)
A vulnerability was found in Totolink LR350 9.3.5u.6369_B20220309. Affected by this vulnerability is the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid results in buffer overflow. The attack ma...
π https://www.thehackerwire.com/vulnerability/CVE-2026-1155/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- Kozea
- WeasyPrint
Description
Statistics
- 1 Post
Fediverse
π CVE-2025-68616 - High (7.5)
WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side request forgery (SSRF) protection bypass exists in WeasyPrint's `default_url_fetcher`. The vulnerability allows attackers to access internal network reso...
π https://www.thehackerwire.com/vulnerability/CVE-2025-68616/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- Altium
- Altium 365
Description
Statistics
- 1 Post
Fediverse
π΄ CVE-2026-1181 - Critical (9)
A stored cross-site scripting (XSS) vulnerability exists in the Altium Forum due to missing server-side input sanitization in forum post content. An authenticated attacker can inject arbitrary JavaScript into forum posts, which is stored and execu...
π https://www.thehackerwire.com/vulnerability/CVE-2026-1181/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- Totolink
- LR350
Description
Statistics
- 1 Post
Fediverse
π CVE-2026-1156 - High (8.8)
A vulnerability was determined in Totolink LR350 9.3.5u.6369_B20220309. Affected by this issue is the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument ssid causes buffer overflow. It is possible to initi...
π https://www.thehackerwire.com/vulnerability/CVE-2026-1156/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- leepeuker
- movary
Description
Statistics
- 1 Post
Fediverse
π΄ CVE-2026-23839 - Critical (9.3)
Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-site scripting payloads in versions prior to 0.70.0. The vulnerable parameter is `?categoryUpdated=`...
π https://www.thehackerwire.com/vulnerability/CVE-2026-23839/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- ImageMagick
- ImageMagick
Description
Statistics
- 1 Post
Fediverse
π CVE-2026-23876 - High (8.1)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write contr...
π https://www.thehackerwire.com/vulnerability/CVE-2026-23876/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- kohler
- hotcrp
Description
Statistics
- 1 Post
Fediverse
π΄ CVE-2026-23836 - Critical (9.9)
HotCRP is conference review software. A problem introduced in April 2024 in version 3.1 led to inadequately sanitized code generation for HotCRP formulas which allowed users to trigger the execution of arbitrary PHP code. The problem is patched in...
π https://www.thehackerwire.com/vulnerability/CVE-2026-23836/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack