8.7

CVSS4.0

CVE-2026-2881 - D-Link DWR-M960 Advanced Firewall Configuration Endpoint formFirewallAdv sub_425FF8 stack-based ove…

A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_425FF8 of the file /boafrm/formFirewallAdv of the component Advanced Firewall Configuration Endpoint. Such manipulation of the argument submit-url leads to stack-based buffer overflow. The attack …

πŸ“… Published: Feb. 21, 2026, 7:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 7:32 p.m.

8.7

CVSS4.0

CVE-2026-2877 - Tenda A18 Httpd Service WifiExtraSet strcpy stack-based overflow

A vulnerability has been found in Tenda A18 15.13.07.13. This affects the function strcpy of the file /goform/WifiExtraSet of the component Httpd Service. The manipulation of the argument wpapsk_crypto5g leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The explo…

πŸ“… Published: Feb. 21, 2026, 6:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 6:32 p.m.

8.7

CVSS4.0

CVE-2026-2876 - Tenda A18 setBlackRule parse_macfilter_rule stack-based overflow

A vulnerability was determined in Tenda A18 15.13.07.13. This affects the function parse_macfilter_rule of the file /goform/setBlackRule. This manipulation of the argument deviceList causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed an…

πŸ“… Published: Feb. 21, 2026, 5:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 5:32 p.m.

8.7

CVSS4.0

CVE-2026-2874 - Tenda A21 fast_setting_wifi_set form_fast_setting_wifi_set stack-based overflow

A flaw has been found in Tenda A21 1.0.0.0. Impacted is the function form_fast_setting_wifi_set of the file /goform/fast_setting_wifi_set. Executing a manipulation of the argument ssid can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been publis…

πŸ“… Published: Feb. 21, 2026, 5:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 5:32 p.m.

8.7

CVSS4.0

CVE-2026-2873 - Tenda A21 openSchedWifi setSchedWifi stack-based overflow

A vulnerability was detected in Tenda A21 1.0.0.0. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. Performing a manipulation of the argument schedStartTime/schedEndTime results in stack-based buffer overflow. It is possible to initiate the attack remotely. The exploi…

πŸ“… Published: Feb. 21, 2026, 4:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 4:32 p.m.

8.7

CVSS4.0

CVE-2026-2872 - Tenda A21 MAC Filtering Configuration Endpoint setBlackRule set_device_name stack-based overflow

A security vulnerability has been detected in Tenda A21 1.0.0.0. This vulnerability affects the function set_device_name of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. Such manipulation of the argument devName/mac leads to stack-based buffer overflow. The at…

πŸ“… Published: Feb. 21, 2026, 4:02 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 4:02 p.m.

8.7

CVSS4.0

CVE-2026-2871 - Tenda A21 SetIpMacBind fromSetIpMacBind stack-based overflow

A weakness has been identified in Tenda A21 1.0.0.0. This affects the function fromSetIpMacBind of the file /goform/SetIpMacBind. This manipulation of the argument list causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been made available to the …

πŸ“… Published: Feb. 21, 2026, 3:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 3:32 p.m.

8.7

CVSS4.0

CVE-2026-2870 - Tenda A21 formSetQosBand set_qosMib_list stack-based overflow

A security flaw has been discovered in Tenda A21 1.0.0.0. Affected by this issue is the function set_qosMib_list of the file /goform/formSetQosBand. The manipulation of the argument list results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been released to th…

πŸ“… Published: Feb. 21, 2026, 2:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 2:32 p.m.

4.8

CVSS4.0

CVE-2026-2869 - janet-lang janet handleattr specials.c janetc_varset out-of-bounds

A vulnerability was identified in janet-lang janet up to 1.40.1. Affected by this vulnerability is the function janetc_varset of the file src/core/specials.c of the component handleattr Handler. The manipulation leads to out-of-bounds read. The attack can only be performed from a local environment.…

πŸ“… Published: Feb. 21, 2026, 2:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 2:32 p.m.

6.9

CVSS4.0

CVE-2026-2867 - itsourcecode Vehicle Management System billaction.php sql injection

A vulnerability was determined in itsourcecode Vehicle Management System 1.0. Affected is an unknown function of the file /billaction.php. Executing a manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been publicly disclosed and may be u…

πŸ“… Published: Feb. 21, 2026, 1:32 p.m. πŸ”„ Last Modified: Feb. 21, 2026, 1:32 p.m.
Total resulsts: 334191
Page 2 of 33,420
Β« previous page Β» next page
Filters