Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
13269
Total
878
Critical
3860
High
4207
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-0814 | MEDIUM | 4.3 | The Advanced Contact form 7 DB plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'vsz_cf7_export_to_excel' … | Apr 08, 2026 |
| CVE-2026-0811 | MEDIUM | 5.4 | The Advanced Contact form 7 DB plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.9. This is … | Apr 08, 2026 |
| CVE-2025-50673 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the http_lanport parameter in the /webgl.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50672 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of parameters in the /yyxz_dlink.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50671 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of parameters in the /xwgl_ref.asp endpoint. An attacker can exploit this vulnerability … | Apr 08, 2026 |
| CVE-2025-50670 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of parameters in the /xwgl_bwr.asp endpoint. An attacker can exploit this vulnerability … | Apr 08, 2026 |
| CVE-2025-50669 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wan_ping parameter in the /wan_ping.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50668 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the s parameter in the /web_list_opt.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50667 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the iface parameter in the /wan_line_detection.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50666 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of multiple parameters in the /web_post.asp endpoint. An attacker can exploit this … | Apr 08, 2026 |
| CVE-2025-50665 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of input parameters in the /web_keyword.asp endpoint. An attacker can exploit this … | Apr 08, 2026 |
| CVE-2025-50664 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of parameters in the /user_group.asp endpoint. The attacker can exploit this vulnerability … | Apr 08, 2026 |
| CVE-2025-50663 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /usb_paswd.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50662 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /url_group.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50661 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of multiple parameters in the /url_rule.asp endpoint. An attacker can exploit this … | Apr 08, 2026 |
| CVE-2025-50660 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /url_member.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50659 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the custom_error parameter in the /user.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50657 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the pid parameter in the /trace.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50655 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /thd_group.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50654 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper validation of the id parameter in the /thd_member.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50653 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name and mem parameters in the /time_group.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50652 | UNKNOWN | — | An issue in D-Link DI-8003 16.07.26A1 related to improper handling of the id parameter in the /saveparm_usb.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50650 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to inadequate validation of input size in the routes_static parameter in the /router.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50649 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper input validation in the vlan_name parameter in the /shut_set.asp endpoint. | Apr 08, 2026 |
| CVE-2025-50648 | UNKNOWN | — | A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to inadequate input validation in the /tggl.asp endpoint. | Apr 08, 2026 |