|
101
|
7.5 |
HIGH
Network
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain multiple stack overflows in the formwrlSSIDset function via the mit_ssid and mis_ssid_index parame…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36793
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
102
|
7.5 |
HIGH
Network
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda O3v3 v1.0.0.5 was discovered to contain a stack overflow in the save_list_data parameter of the formSetCfm function. This vulnerability allows attackers to ca…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36791
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
103
|
4.9 |
MEDIUM
Network
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain a stack overflow in the username parameter of the R7WebsSecurityHandler function. This vulnerabili…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36778
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
104
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain a stack overflow in the param_1 parameter of the formSetCfm function. This vulnerability allows at…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36777
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
105
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain a stack overflow in the Go parameter of the ask_to_reboot function. This vulnerability allows atta…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36773
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
106
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain a stack overflow in the wl_radio parameter of the formwrlSSIDget function. This vulnerability allo…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-36772
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
107
|
5.3 |
MEDIUM
Network
|
-
|
-
|
An arbitrary file deletion vulnerability in the /api/delete-temp-license/{file} endpoint of bookcars v8.3 allows unauthenticated attackers to delete arbitrary files via supplying directory traversal …
New
|
CWE-22
Path Traversal
|
CVE-2026-36726
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
108
|
8.8 |
HIGH
Network
|
-
|
-
|
An unrestricted file rename vulnerability in the /api/create-user component of bookcars v8.3 allows authenticated attackers to leverage directory traversal sequences to move arbitrary files from temp…
New
|
CWE-22
Path Traversal
|
CVE-2026-36723
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
109
|
5.4 |
MEDIUM
Network
|
-
|
-
|
An authenticated arbitrary file upload vulnerability in the /api/create-car-image component of bookcars v8.3 allows attackers to execute arbitrary code via uploading a crafted file.
New
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-36722
|
2026-06-11 03:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
110
|
4.7 |
MEDIUM
Network
|
-
|
-
|
In ScreenConnect™ versions prior to 26.2, input
validation within the Host Pass creation functionality could allow an
authenticated user with Host Pass creation privileges the ability to specify a
to…
New
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2026-11596
|
2026-06-11 03:16 |
2026-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
