Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
0.0 NA
CVE-2026-4212 — D-Link DNS-1550-04 download_mgr.cgi Downloads_Schedule_Info stack-based overflow

A security vulnerability has been detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS…

| Memory Corruption
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4211 — D-Link DNS-1550-04 local_backup_mgr.cgi Local_Backup_Info stack-based overflow

A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-72…

| Memory Corruption
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4210 — D-Link DNS-1550-04 time_machine.cgi cgi_tm_set_share command injection

A security flaw has been discovered in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, D…

| Injection
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4209 — D-Link DNS-1550-04 account_mgr.cgi cgi_chg_admin_pw command injection

A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-72…

| Injection
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4207 — D-Link DNS-1550-04 system_mgr.cgi cgi_ntp_time command injection

A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-72…

| Injection
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4206 — D-Link DNS-1550-04 dsk_mgr.cgi ScanDisk_run_e2fsck command injection

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, …

| Injection
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4205 — D-Link DNS-1550-04 app_mgr.cgi FTP_Server_BlockIP_Del command injection

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-72…

| Injection
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
9.8 CRITICAL
CVE-2017-20224 — Telesquare SKT LTE Router SDT-CS3B1 WebDAV Arbitrary File Upload

Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious content by exploiting enabled WebDAV HTTP m…

Remote | Misconfiguration
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
9.8 CRITICAL
CVE-2017-20223 — Telesquare SKT LTE Router SDT-CS3B1 Insecure Direct Object Reference

Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization and access resources by manipulatin…

Remote | Authorization
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
8.7 HIGH
CVE-2017-20222 — Telesquare SKT LTE Router SDT-CS3B1 Unauthenticated Remote Reboot

Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can…

Remote | Denial of Service
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
5.3 MEDIUM
CVE-2017-20221 — Telesquare SKT LTE Router SDT-CS3B1 CSRF System Command Execution

Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a cross-site request forgery vulnerability that allows authenticated attackers to execute arbitrary system commands by exploiting missing re…

Remote | Cross-Site Request Forgery
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4204 — D-Link DNS-1550-04 gui_mgr.cgi cgi_mycloud_auto_downlaod command injection

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-…

| Injection
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4203 — D-Link DNS-1550-04 network_mgr.cgi cgi_dhcpd command injection

A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-…

| Injection
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4201 — glowxq glowxq-oj SysFileController.java upload unrestricted upload

A weakness has been identified in glowxq glowxq-oj up to 6f7c723090472057252040fd2bbbdaa1b5ed2393. This vulnerability affects the function Upload of the file business/business-system/src/main/java/co…

| Misconfiguration
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4200 — glowxq glowxq-oj ProblemCaseController.java uploadTestcaseZipUrl server-side request forg…

A security flaw has been discovered in glowxq glowxq-oj up to 6f7c723090472057252040fd2bbbdaa1b5ed2393. This affects the function uploadTestcaseZipUrl of the file business/business-oj/src/main/java/c…

| Server-Side Request Forgery
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4199 — bazinga012 mcp_code_executor index.ts installDependencies command injection

A vulnerability was identified in bazinga012 mcp_code_executor up to 0.3.0. Affected by this issue is the function installDependencies of the file src/index.ts. Such manipulation leads to command inj…

| Injection
Mar 16, 2026 Mar 16, 2026
Mar 16, 2026
Mar 16, 2026
0.0 NA
CVE-2026-4198 — hypermodel-labs mcp-server-auto-commit index.ts getGitChanges command injection

A vulnerability was determined in hypermodel-labs mcp-server-auto-commit 1.0.0. Affected by this vulnerability is the function getGitChanges of the file index.ts. This manipulation causes command inj…

| Injection
Mar 15, 2026 Mar 15, 2026
Mar 15, 2026
Mar 15, 2026
0.0 NA
CVE-2026-4197 — D-Link DNS-1550-04 download_mgr.cgi RSS_Item_List command injection

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, …

| Injection
Mar 15, 2026 Mar 15, 2026
Mar 15, 2026
Mar 15, 2026
0.0 NA
CVE-2026-4196 — D-Link DNS-1550-04 remote_backup.cgi cgi_set_rsync_server command injection

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-72…

| Injection
Mar 15, 2026 Mar 15, 2026
Mar 15, 2026
Mar 15, 2026
0.0 NA
CVE-2026-4195 — D-Link DNS-1550-04 wizard_mgr.cgi command injection

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-…

| Injection
Mar 15, 2026 Mar 15, 2026
Mar 15, 2026
Mar 15, 2026
Showing 20 of 5306 Results