Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit c8cb570c1df0 · 2026-03-29T03:32:21.000Z
GHSA-98vg-cqgx-463p GHSA-cm69-52gj-g4j6 GHSA-p2h8-5v2r-2vg8 GHSA-p6f4-6qxg-8xqv GHSA-pcxg-4cp2-qqj4
diff --git a/advisories/unreviewed/2026/03/GHSA-98vg-cqgx-463p/GHSA-98vg-cqgx-463p.json b/advisories/unreviewed/2026/03/GHSA-98vg-cqgx-463p/GHSA-98vg-cqgx-463p.json
@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-98vg-cqgx-463p",
+  "modified": "2026-03-29T03:30:17Z",
+  "published": "2026-03-29T03:30:17Z",
+  "aliases": [
+    "CVE-2026-5020"
+  ],
+  "details": "A vulnerability was detected in Totolink A3600R 4.1.2cu.5182_B20201102. Affected by this issue is the function setNoticeCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument NoticeUrl results in command injection. The attack may be launched remotely. The exploit is now public and may be used.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5020"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lavender-bicycle-a5a.notion.site/TOTOLINK_A3600R_setNoticeCfg-32253a41781f80c197eaf8e7558c5ed1?source=copy_link"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/submit/779536"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/353905"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/353905/cti"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.totolink.net"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-74"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-29T01:15:57Z"
+  }
+}
diff --git a/advisories/unreviewed/2026/03/GHSA-cm69-52gj-g4j6/GHSA-cm69-52gj-g4j6.json b/advisories/unreviewed/2026/03/GHSA-cm69-52gj-g4j6/GHSA-cm69-52gj-g4j6.json
@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-cm69-52gj-g4j6",
+  "modified": "2026-03-29T03:30:18Z",
+  "published": "2026-03-29T03:30:18Z",
+  "aliases": [
+    "CVE-2026-5023"
+  ],
+  "details": "A vulnerability has been found in DeDeveloper23 codebase-mcp up to 3ec749d237dd8eabbeef48657cf917275792fde6. This vulnerability affects the function getCodebase/getRemoteCodebase/saveCodebase of the file src/tools/codebase.ts of the component RepoMix Command Handler. Such manipulation leads to os command injection. The attack needs to be performed locally. The exploit has been disclosed to the public and may be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The project was informed of the problem early through an issue report but has not responded yet.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5023"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/DeDeveloper23/codebase-mcp/issues/7"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/DeDeveloper23/codebase-mcp"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/submit/778348"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/353907"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/353907/cti"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-77"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-29T02:16:17Z"
+  }
+}
diff --git a/advisories/unreviewed/2026/03/GHSA-p2h8-5v2r-2vg8/GHSA-p2h8-5v2r-2vg8.json b/advisories/unreviewed/2026/03/GHSA-p2h8-5v2r-2vg8/GHSA-p2h8-5v2r-2vg8.json
@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-p2h8-5v2r-2vg8",
+  "modified": "2026-03-29T03:30:17Z",
+  "published": "2026-03-29T03:30:17Z",
+  "aliases": [
+    "CVE-2026-2602"
+  ],
+  "details": "The Twentig plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'featuredImageSizeWidth' parameter in versions up to, and including, 1.9.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2602"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3486634/twentig"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/f07881db-7494-4e6d-82ea-16018fa81806?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-29T02:16:16Z"
+  }
+}
diff --git a/advisories/unreviewed/2026/03/GHSA-p6f4-6qxg-8xqv/GHSA-p6f4-6qxg-8xqv.json b/advisories/unreviewed/2026/03/GHSA-p6f4-6qxg-8xqv/GHSA-p6f4-6qxg-8xqv.json
@@ -0,0 +1,35 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-p6f4-6qxg-8xqv",
+  "modified": "2026-03-29T03:30:17Z",
+  "published": "2026-03-29T03:30:17Z",
+  "aliases": [
+    "CVE-2026-4851"
+  ],
+  "details": "GRID::Machine versions through 0.127 for Perl allows arbitrary code execution via unsafe deserialization.\n\nGRID::Machine provides Remote Procedure Calls (RPC) over SSH for Perl. The client connects to remote hosts to execute code on them. A compromised or malicious remote host can execute arbitrary code back on the client through unsafe deserialization in the RPC protocol.\n\nread_operation() in lib/GRID/Machine/Message.pm deserialises values from the remote side using eval()\n\n  $arg .= '$VAR1';\n  my $val = eval \"no strict; $arg\"; # line 40-41\n\n$arg is raw bytes from the protocol pipe. A compromised remote host can embed arbitrary perl in the Dumper-formatted response:\n\n  $VAR1 = do { system(\"...\"); };\n\nThis executes on the client silently on every RPC call, as the return values remain correct.\n\nThis functionality is by design but the trust requirement for the remote host is not documented in the distribution.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4851"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.openwall.com/lists/oss-security/2026/03/26/6"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2026/03/26/6"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-95"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-29T01:15:56Z"
+  }
+}
diff --git a/advisories/unreviewed/2026/03/GHSA-pcxg-4cp2-qqj4/GHSA-pcxg-4cp2-qqj4.json b/advisories/unreviewed/2026/03/GHSA-pcxg-4cp2-qqj4/GHSA-pcxg-4cp2-qqj4.json
@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-pcxg-4cp2-qqj4",
+  "modified": "2026-03-29T03:30:18Z",
+  "published": "2026-03-29T03:30:18Z",
+  "aliases": [
+    "CVE-2026-5021"
+  ],
+  "details": "A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserSetting of the component httpd. This manipulation of the argument delno causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5021"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/Litengzheng/vul_db/blob/main/F453/vul_92/README.md"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/submit/778415"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/353906"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/vuln/353906/cti"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.tenda.com.cn"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-119"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-29T02:16:17Z"
+  }
+}
