CVE Vulnerabilities - 9 April 2026

A weakness in the password change feature of Tenda AC15 routers can be exploited remotely, potentially allowing unauthorized access to the device. This means an attacker can gain control over the rout...

The Vertex Addons for Elementor plugin for WordPress is vulnerable to unauthorized plugin installation and activation in all versions up to 1.6.4. If not updated, attackers with a basic level of acces...

A security weakness in the D-Link DIR-645 router's CGI interface allows an attacker to potentially exploit it remotely. This affects older versions of the router that are no longer supported by the ma...

A weakness in Atototo API Lab MCP version 0.2.1 and earlier allows hackers to trick the server into making unauthorized requests. This could be exploited remotely and malicious code has been made avai...

The Simple IT Discussion Forum software has a security flaw in its posting system. If an attacker manipulates the post_id field, they may be able to access sensitive data. We recommend updating to a p...

A security flaw in the Simple IT Discussion Forum software allows an attacker to inject malicious SQL code when adding comments. This could allow an attacker to access sensitive data or take control o...

A security flaw in the Simple IT Discussion Forum 1.0 software allows an attacker to inject malicious code into the database, potentially stealing or modifying sensitive data. This can happen if an at...

A security flaw in Simple Laundry System 1.0 allows an attacker to manipulate user input, potentially gaining unauthorized access to the system. This could happen if an attacker sends malicious data t...

The PHPGurukul Online Course Registration 3.1 system has a security flaw that lets attackers access sensitive data by manipulating certain inputs. This can be done from anywhere on the internet, and a...

A security flaw in Agions Taskflow-AI versions up to 2.1.8 allows an attacker to inject malicious commands into the system, potentially leading to unauthorized actions. This affects users who have thi...

A security flaw in the itsourcecode Construction Management System allows an attacker to remotely inject malicious code into the system. This could happen if someone enters malicious input when access...

A security issue in Simple IT Discussion Forum 1.0 can allow an attacker to inject malicious code into the forum. This could happen if a user is tricked into visiting a malicious link, which could pot...

The Simple Laundry System 1.0 has a security weakness in its user ID handling, allowing an attacker to potentially inject malicious code. This could happen if a user with malicious intent sends specia...

Adobe Acrobat DC is vulnerable to an unpatched security issue that allows attackers to execute malicious code on a remote computer. This could lead to unauthorized access to sensitive data or system c...

Adobe Acrobat Reader has a security flaw that could allow hackers to execute malicious code on your computer if you open a specially crafted PDF file. This could allow them to access sensitive informa...

An issue with the WP User Manager plugin for WordPress allows unauthorized users to gain access to administrator accounts. This could allow attackers to take control of the website. Update the plugin ...