Posts of last 24 hours
A vulnerability marked as critical has been reported in Tenda AC7 15.03.06.44. The impacted element is an unknown function of the file /goform/AdvSetMacMtuWan. The manipulation of the argument wanSpeed leads to stack-based buffer overflow.
This vulnerability is uniquely identified as CVE-2026-51846. The attack is possible to be carried out remotely. No exploit exists.
https://vuldb.com/vuln/372468
A vulnerability classified as problematic was found in Wikimedia MediaWiki up to 1.45.x. Affected is an unknown function of the file resources/src/mediawiki.Special.Apisandbox/ApiSandboxLayout.Js. Executing a manipulation can lead to cross site scripting.
This vulnerability is registered as CVE-2026-58031. It is possible to launch the attack remotely. No exploit is available.
Upgrading the affected component is advised.
https://vuldb.com/vuln/375551
A vulnerability, which was classified as problematic, has been found in Wikimedia MediaWiki up to 1.45.x. Affected by this vulnerability is an unknown functionality of the file resources/src/MediaWiki.Special.Block/SpecialBlock.Vue. The manipulation leads to cross site scripting.
This vulnerability is documented as CVE-2026-58035. The attack can be initiated remotely. There is not any exploit available.
It is advisable to upgrade the affected component.
https://vuldb.com/vuln/375552
A vulnerability was found in Wikimedia CheckUser up to 1.45.x and classified as problematic. This vulnerability affects unknown code of the file /components/blockConnectedTempAccountsField. Such manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2026-58034. The attack may be launched remotely. There is no exploit available.
It is suggested to upgrade the affected component.
https://vuldb.com/vuln/375555
A vulnerability was found in Wikimedia UrlShortener up to 1.46.0/1.45.4/1.44.6/1.43.9. It has been classified as critical. The impacted element is an unknown function. The manipulation leads to improper input validation.
This vulnerability is traded as CVE-2026-13706. It is possible to initiate the attack remotely. There is no exploit available.
https://vuldb.com/vuln/375570
A vulnerability identified as problematic has been detected in Wikimedia MediaWiki up to 1.45.x/1.45.3/1.44.5/1.43.8. Affected by this vulnerability is an unknown functionality of the file includes/Api/ApiUserrights.Php. Performing a manipulation results in information disclosure.
This vulnerability was named CVE-2026-58024. The attack may be initiated remotely. There is no available exploit.
You should upgrade the affected component.
https://vuldb.com/vuln/375574
A vulnerability described as problematic has been identified in Wikimedia AbuseFilter up to 1.45.x/1.45.3/1.44.5/1.43.8. This vulnerability affects unknown code of the file includes/Api/QueryAbuseFilters.Php. The manipulation results in information disclosure.
This vulnerability is identified as CVE-2026-58027. The attack can be executed remotely. There is not any exploit available.
Upgrading the affected component is recommended.
https://vuldb.com/vuln/375577
A vulnerability classified as critical has been found in Wikimedia MediaWiki up to 1.45.x/1.45.3/1.44.5/1.43.8. This issue affects some unknown processing of the file includes/Api/ApiChangeAuthenticationData.Php,. This manipulation causes improper authentication.
This vulnerability is tracked as CVE-2026-58029. The attack is possible to be carried out remotely. No exploit exists.
It is recommended to upgrade the affected component.
https://vuldb.com/vuln/375578
A vulnerability classified as problematic was found in Wikimedia CentralAuth up to 1.45.x/1.45.3/1.44.5/1.43.8. This affects an unknown function of the file includes/Api/ApiFormatBase.Php. Executing a manipulation can lead to cross site scripting.
This vulnerability is tracked as CVE-2026-58028. The attack can be launched remotely. No exploit exists.
Upgrading the affected component is advised.
https://vuldb.com/vuln/375593
A vulnerability labeled as problematic has been found in Angular up to 18.2.14/19.2.24/20.3.23/21.2.15. This impacts an unknown function of the component Unicode Character Handler. Such manipulation leads to cross site scripting.
This vulnerability is listed as CVE-2026-50555. The attack may be performed from remote. There is no available exploit.
The affected component should be upgraded.
https://vuldb.com/vuln/372789