NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-34248	Zammad is a web based open source helpdesk/customer support system. Prior to 7.0.1, customers in shared organizations (means they can see each other's...	2026-04-08	2.1	NETWORK	LOW	NVD
CVE-2026-34166	LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to 10.25.3, the replace filter in LiquidJS incorrectly accou...	2026-04-08	3.7	NETWORK	LOW	NVD
CVE-2026-33350	LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provides data- and project-management for neuroimaging r...	2026-04-08	7.5	NETWORK	HIGH	NVD
CVE-2026-30818	An OS command injection vulnerability in the dnsmasq module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to execute arbitrary...	2026-04-08	8.0	ADJACENT_NETWORK	HIGH	NVD
CVE-2026-30817	An external configuration control vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary...	2026-04-08	5.7	ADJACENT_NETWORK	MEDIUM	NVD
CVE-2026-30816	An external control of configuration vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitr...	2026-04-08	5.7	ADJACENT_NETWORK	MEDIUM	NVD
CVE-2026-30815	An OS command injection vulnerability in the OpenVPN module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to execute system co...	2026-04-08	8.0	ADJACENT_NETWORK	HIGH	NVD
CVE-2026-30814	A stack-based buffer overflow in the tmpServer module of TP-Link Archer AX53 v1.0 allows an authenticated adjacent attacker to trigger a segmentation ...	2026-04-08	8.0	ADJACENT_NETWORK	HIGH	NVD
CVE-2026-2942	The ProSolution WP Client plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'proSol_fileUploadPr...	2026-04-08	9.8	NETWORK	CRITICAL	NVD
CVE-2026-27806	Fleet is open source device management software. Prior to 4.81.1, the Orbit agent's FileVault disk encryption key rotation flow on collects a local us...	2026-04-08	7.8	LOCAL	HIGH	NVD
CVE-2026-20709	Use of Default Cryptographic Key in the hardware for some Intel(R) Pentium(R) Processor Silver Series, Intel(R) Celeron(R) Processor J Series, Intel(R...	2026-04-08	6.6	PHYSICAL	MEDIUM	NVD
CVE-2026-0814	The Advanced Contact form 7 DB plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'vsz_cf7_exp...	2026-04-08	4.3	NETWORK	MEDIUM	NVD
CVE-2026-0811	The Advanced Contact form 7 DB plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.9. This is d...	2026-04-08	5.4	NETWORK	MEDIUM	NVD
CVE-2025-50673	A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the http_lanport parameter in the /webgl.asp endpoint.	2026-04-08	7.5	NETWORK	HIGH	NVD
CVE-2025-50672	A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of parameters in the /yyxz_dlink.asp endpoint.	2026-04-08	7.5	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.