Monitor vulnerabilities that affect your stack.
Sign up free to get alerts when software you use is affected.
CVE Vulnerabilities - 23 March 2026
RSS6 vulnerabilities published on 23 March 2026
Severity:
Tenda AC21 Router Buffer Overflow via Malicious Input
CVE-2026-4565
A bug in the Tenda AC21 router's quality of service settings can be exploited by an attacker to remotely crash the device. This can be done by sending specially crafted data to the router. To protect ...
7.4
WP Maps WordPress plugin allows attackers to access sensitive database data
CVE-2026-2580
The WP Maps WordPress plugin has a security flaw that allows hackers to access sensitive information from the database without needing a password. This is because the plugin doesn't properly protect u...
7.5
MacCMS: Unauthenticated access to sensitive data via API
CVE-2026-4562
A security flaw in MacCMS allows attackers to access sensitive data without being authenticated. This means that if exploited, an attacker could potentially access confidential information without nee...
6.9
Quartz Job Handler in RuoYi up to 4.8.2 Can Let Hackers Inject Code Remotely
CVE-2026-4564
A security issue in RuoYi's Quartz Job Handler can allow hackers to inject malicious code into the system, potentially allowing them to take control of your website or server. This means that a hacker...
5.1
MacCMS Order Order_info Function Authorization Bypass
CVE-2026-4563
A weakness in MacCMS, a content management system, allows an attacker to bypass security checks and access sensitive information. This could happen if someone uses a remote attack. Users should update...
5.3
Ruby Rack Security Update Fixes Critical Security Flaw
DLA-4505-1
Ruby Rack, a web server framework, has updated to fix a security vulnerability. This update is critical because it affects many websites and web applications, potentially allowing attackers to execute...