Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
6.9 MEDIUM
CVE-2019-25589 — ZOC Terminal 7.23.4 Buffer Overflow Denial of Service

ZOC Terminal 7.23.4 contains a buffer overflow vulnerability in the Shell field of Program Settings that allows local attackers to crash the application by supplying an excessively long string. Attac…

zoc | Memory Corruption
Mar 22, 2026 Apr 15, 2026
Mar 22, 2026
Apr 15, 2026
6.9 MEDIUM
CVE-2019-25588 — BulletProof FTP Server 2019.0.0.50 Denial of Service via DNS Address

BulletProof FTP Server 2019.0.0.50 contains a denial of service vulnerability in the DNS Address field that allows local attackers to crash the application by supplying an excessively long string. At…

bulletproof_ftp_server | Denial of Service
Mar 22, 2026 Mar 25, 2026
Mar 22, 2026
Mar 25, 2026
6.9 MEDIUM
CVE-2019-25587 — BulletProof FTP Server 2019.0.0.50 Storage-Path Denial of Service

BulletProof FTP Server 2019.0.0.50 contains a denial of service vulnerability in the Storage-Path configuration parameter that allows local attackers to crash the application by supplying an excessiv…

bulletproof_ftp_server | Denial of Service
Mar 22, 2026 Mar 25, 2026
Mar 22, 2026
Mar 25, 2026
6.9 MEDIUM
CVE-2019-25586 — Deluge 1.3.15 Denial of Service via URL Field

Deluge 1.3.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the URL field. Attackers can paste a buffer of…

deluge | Denial of Service
Mar 22, 2026 Mar 24, 2026
Mar 22, 2026
Mar 24, 2026
6.9 MEDIUM
CVE-2019-25585 — Deluge 1.3.15 Denial of Service via Webseeds Field

Deluge 1.3.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Webseeds field. Attackers can paste a buff…

deluge | Denial of Service
Mar 22, 2026 Mar 24, 2026
Mar 22, 2026
Mar 24, 2026
6.9 MEDIUM
CVE-2019-25584 — RarmaRadio 2.72.3 Server Field Buffer Overflow Denial of Service

RarmaRadio 2.72.3 contains a buffer overflow vulnerability in the Server field of the Network settings that allows local attackers to crash the application by supplying an excessively long string. At…

rarmaradio | Memory Corruption
Mar 22, 2026 Mar 24, 2026
Mar 22, 2026
Mar 24, 2026
6.9 MEDIUM
CVE-2019-25583 — RarmaRadio 2.72.3 Username Field Denial of Service

RarmaRadio 2.72.3 contains a denial of service vulnerability in the Username field that allows local attackers to crash the application by submitting excessively long input. Attackers can paste a buf…

rarmaradio | Denial of Service
Mar 22, 2026 Mar 24, 2026
Mar 22, 2026
Mar 24, 2026
5.3 MEDIUM
CVE-2026-4530 — apconw Aix-DB terminology_retriever.py sql injection

A security flaw has been discovered in apconw Aix-DB up to 1.2.3. This impacts an unknown function of the file agent/text2sql/rag/terminology_retriever.py. Performing a manipulation of the argument D…

| Injection
Mar 22, 2026 Mar 23, 2026
Mar 22, 2026
Mar 23, 2026
9.0 HIGH
CVE-2026-4529 — D-Link DHP-1320 SOAP redirect_count_down_page stack-based overflow

A vulnerability was identified in D-Link DHP-1320 1.00WWB04. This affects the function redirect_count_down_page of the component SOAP Handler. Such manipulation leads to stack-based buffer overflow. …

Remote | Memory Corruption
Mar 21, 2026 Mar 23, 2026
Mar 21, 2026
Mar 23, 2026
8.1 HIGH
CVE-2026-3629 — Import and export users and customers <= 1.29.7 - Privilege Escalation to Administrator v…

The Import and export users and customers plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.29.7. This is due to the 'save_extra_user_profile_fields' …

import_and_export_users_and_customers | Remote | Authorization
Mar 21, 2026 Mar 23, 2026
Mar 21, 2026
Mar 23, 2026
7.5 HIGH
CVE-2026-4528 — trueleaf ApiFlow URL Validation http_proxy.service.ts validateUrlSecurity server-side req…

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/http_proxy.service.ts of the component…

Remote | Server-Side Request Forgery
Mar 21, 2026 Mar 23, 2026
Mar 21, 2026
Mar 23, 2026
Showing 20 of 5991 Results