Aggregator

A vulnerability classified as critical has been found in D-Link DWR-M921 1.1.50. Affected is the function sub_419F20 of the file /boafrm/formUSSDSetup of the component USSD Configuration Endpoint. The manipulation of the argument ussdValue leads to command injection. This vulnerability is documented as CVE-2026-2085. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability described as critical has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_420688 of the file /goform/set_qos. Executing a manipulation can lead to os command injection. This vulnerability is handled as CVE-2026-2142. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability categorized as critical has been discovered in D-Link DIR-823X 250416. The affected element is the function sub_4208A0 of the file /goform/set_dmz of the component Configuration Handler. The manipulation of the argument dmz_host/dmz_enable results in os command injection. This vulnerability is identified as CVE-2026-2155. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability labeled as critical has been found in D-Link DIR-823X 250416. This affects the function sub_4175CC of the file /goform/set_static_route_table. Such manipulation of the argument interface/destip/netmask/gateway/metric leads to os command injection. This vulnerability is listed as CVE-2026-2157. The attack may be performed from remote. In addition, an exploit is available.

A vulnerability classified as critical has been found in D-Link DIR-823X 250416. This vulnerability affects the function sub_420618 of the file /goform/set_upnp. This manipulation of the argument upnp_enable causes os command injection. This vulnerability is registered as CVE-2026-2175. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability classified as critical has been found in D-Link DIR-823X 250416. This issue affects some unknown processing of the file /goform/set_ddns of the component DDNS Service. The manipulation of the argument ddnsType/ddnsDomainName/ddnsUserName/ddnsPwd leads to os command injection. This vulnerability is uniquely identified as CVE-2026-2143. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability classified as critical has been found in D-Link DIR-823X 250416. This affects an unknown function of the file /goform/set_server_settings of the component Configuration Parameter Handler. The manipulation of the argument terminal_addr/server_ip/server_port leads to os command injection. This vulnerability is listed as CVE-2026-2120. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability classified as critical has been found in D-Link DIR-823X 250416. Affected by this issue is some unknown functionality of the file /goform/set_ac_status. Performing a manipulation of the argument ac_ipaddr/ac_ipstatus/ap_randtime results in os command injection. This vulnerability was named CVE-2026-2129. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability described as critical has been identified in D-Link DIR-823X 250416. This impacts an unknown function of the file /goform/set_language. Executing a manipulation of the argument langSelection can lead to os command injection. This vulnerability is registered as CVE-2026-2084. It is possible to launch the attack remotely. Furthermore, an exploit is available.

Russia has granted political asylum to a Spanish national accused in his home country of “cyberterrorism and espionage” in support of Moscow, according to Russian state media.

Microsoft has revealed that it observed a multi‑stage intrusion that involved the threat actors exploiting internet‑exposed SolarWinds Web Help Desk (WHD) instances to obtain initial access and move laterally across the organization's network to other high-value assets. That said, the Microsoft Defender Security Research Team said it's not clear whether the activity weaponized recently

A vulnerability, which was classified as critical, was found in JAY Login & Register Plugin up to 2.6.03 on WordPress. The affected element is the function jay_panel_ajax_update_profile. Executing a manipulation can lead to improper privilege management. This vulnerability appears as CVE-2025-15100. The attack may be performed from remote. There is no available exploit.

A vulnerability, which was classified as critical, has been found in JAY Login & Register Plugin up to 2.6.03 on WordPress. Impacted is the function jay_login_register_ajax_create_final_user. Performing a manipulation results in improper privilege management. This vulnerability is reported as CVE-2025-15027. The attack is possible to be carried out remotely. No exploit exists.

Теперь внутри кода прячется сюрприз, о котором не знают даже профи.

A vulnerability described as critical has been identified in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub_4407D4 of the file /goform/formReleaseConnect of the component rehttpd. Executing a manipulation of the argument Isp_Name can lead to command injection. This vulnerability is tracked as CVE-2026-2118. The attack can be launched remotely. Moreover, an exploit is present.

A vulnerability was found in D-Link DI-7100G C1 24.04.18D1. It has been declared as critical. This affects the function start_proxy_client_email. Executing a manipulation can lead to command injection. This vulnerability is handled as CVE-2026-2194. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability was found in code-projects Online Reviewer System 1.0. It has been rated as critical. This vulnerability affects unknown code of the file /system/system/admins/assessments/pretest/questions-view.php. The manipulation of the argument ID leads to sql injection. This vulnerability is uniquely identified as CVE-2026-2195. The attack is possible to be carried out remotely. Moreover, an exploit is present.

BridgePay Network Solutions initially warned customers on Friday that it was dealing with system-wide outages and later said that it was working with the FBI and U.S. Secret Service forensic team to resolve a ransomware attack.