Publish Advisories

GHSA-22f9-qcfx-q3w3
GHSA-2r69-43cg-w872
GHSA-2wr3-vxcp-rxmc
GHSA-7qg4-wvfj-q8vh
GHSA-7xfw-wjqp-g457
GHSA-85xc-x9cc-h488
GHSA-8c32-r583-4rf7
GHSA-8wh6-84qg-rgc5
GHSA-8xm2-w3mq-82vh
GHSA-9mjh-488m-qp5f
GHSA-f283-4xfp-28w6
GHSA-g8xf-86vx-763p
GHSA-j677-33p6-9vp7
GHSA-mfg9-9f84-64m4
GHSA-p3w8-qjhq-pfwj
GHSA-qg2h-86fw-x9x4
GHSA-qgr7-38xj-4jpq
GHSA-rcv7-3vfh-47x6
GHSA-wcpg-p923-mr58

Author: advisory-database[bot]

advisories/unreviewed/2026/03/GHSA-22f9-qcfx-q3w3/GHSA-22f9-qcfx-q3w3.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-22f9-qcfx-q3w3",
-  "modified": "2026-03-05T06:30:31Z",
+  "modified": "2026-03-06T12:30:30Z",
   "published": "2026-03-05T06:30:31Z",
   "aliases": [
     "CVE-2026-2418"
   ],
   "details": "The Login with Salesforce WordPress plugin through 1.0.2 does not validate that users are allowed to login through Salesforce, allowing unauthenticated users to be authenticated as any user (such as admin) by simply knowing the email",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -21,7 +26,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "CRITICAL",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2026-03-05T06:16:51Z"

advisories/unreviewed/2026/03/GHSA-2r69-43cg-w872/GHSA-2r69-43cg-w872.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2r69-43cg-w872",
-  "modified": "2026-03-05T21:30:47Z",
+  "modified": "2026-03-06T12:30:30Z",
   "published": "2026-03-05T21:30:47Z",
   "aliases": [
     "CVE-2026-26418"
   ],
   "details": "Missing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 allows remote attackers to access application functionality without restriction via the network.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -28,8 +33,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-284"
+    ],
+    "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2026-03-05T19:16:04Z"

advisories/unreviewed/2026/03/GHSA-2wr3-vxcp-rxmc/GHSA-2wr3-vxcp-rxmc.json

@@ -0,0 +1,33 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-2wr3-vxcp-rxmc",
+  "modified": "2026-03-06T12:30:31Z",
+  "published": "2026-03-06T12:30:30Z",
+  "aliases": [
+    "CVE-2026-3589"
+  ],
+  "details": "The WooCommerce WordPress plugin from versions 5.4.0 to 10.5.2 does not properly handle batch requests, which could allow unauthenticated users to make a logged in admin call non store/WC REST endpoints, and create arbitrary admin users via a CSRF attack for example.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3589"
+    },
+    {
+      "type": "WEB",
+      "url": "https://developer.woocommerce.com/2026/03/02/store-api-vulnerability-patched-in-woocommerce-5-4"
+    },
+    {
+      "type": "WEB",
+      "url": "https://wpscan.com/vulnerability/53ded097-274d-4850-82ee-620bf02f7553"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-06T10:16:22Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-7qg4-wvfj-q8vh/GHSA-7qg4-wvfj-q8vh.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-7qg4-wvfj-q8vh",
-  "modified": "2026-03-05T21:30:45Z",
+  "modified": "2026-03-06T12:30:30Z",
   "published": "2026-03-05T21:30:45Z",
   "aliases": [
     "CVE-2025-13476"
   ],
   "details": "Rakuten Viber Cloak mode in Android v25.7.2.0g and Windows v25.6.0.0–v25.8.1.0 uses a static and predictable TLS ClientHello fingerprint lacking extension diversity, allowing Deep Packet Inspection (DPI) systems to trivially identify and block proxy traffic, undermining censorship circumvention. (CWE-327)",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -25,7 +30,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "CRITICAL",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2026-03-05T19:15:58Z"

advisories/unreviewed/2026/03/GHSA-7xfw-wjqp-g457/GHSA-7xfw-wjqp-g457.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-7xfw-wjqp-g457",
-  "modified": "2026-03-05T21:30:47Z",
+  "modified": "2026-03-06T12:30:30Z",
   "published": "2026-03-05T21:30:47Z",
   "aliases": [
     "CVE-2026-26417"
   ],
   "details": "A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-284"
+    ],
+    "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2026-03-05T19:16:04Z"

advisories/unreviewed/2026/03/GHSA-85xc-x9cc-h488/GHSA-85xc-x9cc-h488.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-85xc-x9cc-h488",
-  "modified": "2026-03-05T21:30:46Z",
+  "modified": "2026-03-06T12:30:30Z",
   "published": "2026-03-05T21:30:46Z",
   "aliases": [
     "CVE-2025-70232"
   ],
   "details": "Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetMACFilter.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -28,8 +33,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-121"
+    ],
+    "severity": "CRITICAL",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2026-03-05T19:16:01Z"

advisories/unreviewed/2026/03/GHSA-8c32-r583-4rf7/GHSA-8c32-r583-4rf7.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-8c32-r583-4rf7",
-  "modified": "2026-03-05T21:30:46Z",
+  "modified": "2026-03-06T12:30:30Z",
   "published": "2026-03-05T21:30:46Z",
   "aliases": [
     "CVE-2025-70230"
   ],
   "details": "Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetDDNS.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -28,8 +33,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-121"
+    ],
+    "severity": "CRITICAL",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2026-03-05T19:16:00Z"

advisories/unreviewed/2026/03/GHSA-8wh6-84qg-rgc5/GHSA-8wh6-84qg-rgc5.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-8wh6-84qg-rgc5",
+  "modified": "2026-03-06T12:30:31Z",
+  "published": "2026-03-06T12:30:31Z",
+  "aliases": [
+    "CVE-2026-28080"
+  ],
+  "details": "Missing Authorization vulnerability in Rank Math Rank Math SEO PRO allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rank Math SEO PRO: from n/a through 3.0.95.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28080"
+    },
+    {
+      "type": "WEB",
+      "url": "https://patchstack.com/database/wordpress/plugin/seo-by-rank-math-pro/vulnerability/wordpress-rank-math-seo-pro-plugin-3-0-95-broken-access-control-vulnerability?_s_id=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-862"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-06T12:15:54Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-8xm2-w3mq-82vh/GHSA-8xm2-w3mq-82vh.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-8xm2-w3mq-82vh",
+  "modified": "2026-03-06T12:30:31Z",
+  "published": "2026-03-06T12:30:31Z",
+  "aliases": [
+    "CVE-2026-28106"
+  ],
+  "details": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Kings Plugins B2BKing Premium allows Phishing.This issue affects B2BKing Premium: from n/a through 5.3.80.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28106"
+    },
+    {
+      "type": "WEB",
+      "url": "https://patchstack.com/database/wordpress/plugin/b2bking/vulnerability/wordpress-b2bking-premium-plugin-5-3-80-open-redirection-vulnerability?_s_id=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-601"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-06T12:15:55Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-9mjh-488m-qp5f/GHSA-9mjh-488m-qp5f.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-9mjh-488m-qp5f",
+  "modified": "2026-03-06T12:30:31Z",
+  "published": "2026-03-06T12:30:31Z",
+  "aliases": [
+    "CVE-2026-1468"
+  ],
+  "details": "QuickCMS is vulnerable to Cross-Site Request Forgery across multiple endpoints. An attacker can craft special website, which when visited by the victim, will automatically send a POST request with victim's privileges.\nThis software does not implement any protection against this type of attack. All forms available in this software are potentially vulnerable.\n\nThe vendor was notified early about this vulnerability, but didn't respond with the details of vulnerability or vulnerable version range. Only version 6.8 was tested and confirmed as vulnerable, other versions were not tested and might also be vulnerable.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1468"
+    },
+    {
+      "type": "WEB",
+      "url": "https://cert.pl/posts/2026/03/CVE-2026-1468"
+    },
+    {
+      "type": "WEB",
+      "url": "https://opensolution.org/cms-system-quick-cms.html"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-352"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-06T11:16:08Z"
+  }
+}