Everything you care about in one place
Follow feeds: blogs, news, RSS and more. An effortless way to read and digest content of your choice.
Get Feederfilestore.fortinet.com
FortiGuard Labs | Intrusion Prevention Service Updates
Get the latest updates from FortiGuard Labs | Intrusion Prevention Service Updates directly as they happen.
Follow now 34 followers
Latest posts
Last updated about 1 hour ago
33.019
about 6 hours ago
Newly Added (2)Grandstream.GSD3710.param.length.Buffer.OverflowCambium.cnPilot.syscmd.asp.Command.ExecutionModified (21)Google.Chrome.V8.Stringify.Memory.CorruptionTOTOLINK.A720R.showSyslog.Information.DisclosureSysAid.On-Premise.checkin.XXESysAid.On-Premise.serverurl.XXESysAid.On-Premise.lshw.XXEWordPress.ConvertPlus.plugin.cp_dismiss_notice.DoSWordPress.OttoKit.st_authorization.Authentication.BypassUniSharp.Laravel.Filemanager.upload.Remote.Code.ExecutionHoneywell.MB-Secure.ping.Command.InjectionGeovision.DateSetting.cgi.Command.InjectionWordPress.Depicter.Slider.Popup.Builder.SQL.InjectionAlltena.Allegra.unzipFileIntoDirectory.Path.TraversalTenda.Routers.fromSetIpBind.Buffer.OverflowTenda.Routers.formWrlsafeset.Buffer.OverflowTOTOLINK.A3002R.formMapDel.Command.InjectionTOTOLINK.A3002R.formDhcpv6s.addrPoolEnd.Buffer.OverflowTOTOLINK.A3002R.formDhcpv6s.addrPoolStart.Buffer.OverflowTOTOLINK.A3002R.formMapDelDevice.Buffer.OverflowTOTOLINK.A3002R.formIpv6Setup.static_dns.Buffer.OverflowIvanti.EPMM.RSAPIV2.Remote.Code.ExecutionZKTeco.BioTime.iclock.API.Path.Traversal
33.018
about 18 hours ago
Newly Added (6)D-Link.DI-8100.ctxz.asp.Buffer.OverflowElastic.Kibana.Assistant.Integration.Code.InjectionWordPress.Plugin.Digits.OTP.Security.BypassFoscam.X5.UDTMediaServer.0x72.Buffer.OverflowFoscam.X5.UDTMediaServer.0x0C.Buffer.OverflowApache.log4net.Configuration.Files.CVE-2018-1285.XXEModified (2)DarkCloud.BotnetKoi.Botnet
33.017
1 day ago
Newly Added (6)IBM.Data.Risk.Manager.SAML.idpSelection.Security.BypassBlankGrabber.BotnetD-Link.DAP-2695.adv_dhcps.php.XSSMS.Windows.library-ms.NTLM.Hash.Information.DisclosureD-Link.DAP-2695.adv_macbypass.php.XSSD-Link.DAP-2695.adv_arpspoofing.php.XSSModified (2)Ivanti.EPMM.RSAPIV2.Remote.Code.ExecutionBackdoor.BPFDoor
33.015
7 days ago
Newly Added (6)Vasion.Print.register_badge.php.ip_address.XSSVasion.Print.elatec_tcpconv2.php.ip_address.SSRFVasion.Print.rfideas_241_install.php.ip_address.SSRFVasion.Print.register_badge_new.php.username.XSSVasion.Print.overview_popup.php.date.XSSAMI.MegaRAC.SPx.CVE-2024-54085.Authentication.BypassModified (3)MS.Browser.Classid.Memory.CorruptionErlang.OTP.SSH.Server.Remote.Code.ExecutionSonicWall.SonicOS.SSLVPN.Authentication.Bypass
33.014
8 days ago
Newly Added (1)WordPress.Plugin.Kubio.AI.Page.Builder.Local.File.InclusionModified (1)Mulitple.Vendors.Boa.Server.submit-url.Buffer.Overflow
33.013
9 days ago
Newly Added (9)F5.BIG-IP.iControl.REST.and.TMOS.Shell.save.Command.InjectionWordPress.BEAF.beaf_options_save.Arbitrary.File.UploadWordPress.Plugin.PDF.2.Post.Remote.Code.ExecutionWordPress.Plugin.URnM.MembersService.Privilege.ElevationTenda.AC10.formSetPPTPUserList.Buffer.OverflowOllama.push.Path.TraversalOnline.Car.Rental.System.changeimage1.Arbitrary.File.UploadD-Link.Routers.duaLogout.Buffer.OverflowTenda.FH451.formSafeEmailFilter.Buffer.OverflowModified (2)Remcos.BotnetApache.Tomcat.Time.of.Check.Time.of.Use.Race.Condition
33.012
13 days ago
Newly Added (2)SysAid.On-Premise.lshw.XXEZKTeco.BioTime.iclock.API.Path.TraversalModified (20)Multiple.Vendors.mtkwifi.lua.Command.InjectionFasterXML.jackson-databind.SpEL.Remote.Code.ExecutionWavlink.Devices.adm.cgi.Command.InjectionWavlink.Devices.wireless.cgi.Command.InjectionIvanti.EPMM.RSAPIV2.Remote.Code.ExecutionD-Link.DI-7003GV2.backup.asp.DoSD-Link.Routers.version_upgrade.asp.Remote.Code.ExecutionD-Link.Routers.usb_paswd.asp.Command.InjectionD-Link.Routers.ddns.asp.Buffer.OverflowD-Link.Routers.pppoe_base.asp.Buffer.OverflowD-Link.Routers.speedlimit.data.Buffer.OverflowAdobe.ColdFusion.CVE-2025-43561.Information.DisclosureAdobe.ColdFusion.CVE-2025-43560.Remote.Code.ExecutionMS.Windows.CVE-2025-32709.Privilege.ElevationAdobe.ColdFusion.CVE-2025-43559.Authentication.BypassAdobe.ColdFusion.CVE-2025-43565.Authentication.BypassAdobe.ColdFusion.CVE-2025-43566.Path.TraversalAdobe.ColdFusion.CVE-2025-43563.Information.DisclosureAdobe.ColdFusion.CVE-2025-43564.Authentication.BypassAdobe.ColdFusion.CVE-2025-43562.Remote.Code.ExecutionRemoved (24)Wavlink.Devices.wireless.cgi.macAddr.Command.InjectionWavlink.Devices.wireless.cgi.mac_5g.Command.InjectionWavlink.Devices.wireless.cgi.delete_list.Command.InjectionWavlink.Devices.wan.shtml.adm.cgi.Command.InjectionWavlink.Devices.adm.cgi.wizard_rep.Command.InjectionWavlink.Devices.adm.cgi.led_switch.Command.InjectionWavlink.WL-WN575A3.Adm.cgi.Sysinit.Command.InjectionWavlink.Devices.adm.cgi.DDNS.Command.InjectionWavlink.Devices.adm.cgi.wzdap.Command.InjectionWavlink.AC3000.wireless.cgi.AddMac.Command.InjectionWavlink.AC3000.adm.cgi.restart_hour.Command.InjectionWavlink.AC3000.adm.cgi.restart_min.Command.InjectionWavlink.AC3000.adm.cgi.restart_week.Command.InjectionWavlink.AC3000.adm.cgi.set_ledonoff.Command.InjectionWavlink.AC3000.adm.cgi.set_TR069.Command.InjectionWavlink.AC3000.adm.cgi.set_MeshAp.Buffer.OverflowWavlink.WN579X3.adm.cgi.pingIp.Command.InjectionLinksys.E7350.vif_disable.Command.InjectionLinksys.E7350.apcli_do_enr_pbc_wps.Command.InjectionLinksys.E7350.vif_enable.Command.InjectionLinksys.E7350.reset_wifi.Command.InjectionLinksys.E7350.apcli_do_enr_pin_wps.Command.InjectionLinksys.E7350.apcli_wps_gen_pincode.Command.InjectionLinksys.E7350.apcli_cancel_wps.Command.Injection
33.011
14 days ago
Newly Added (18)Django.JSONField.CVE-2019-14234.SQL.InjectionTenda.Devices.formSetNetCheckTools.Command.InjectionSysAid.On-Premise.checkin.XXESysAid.On-Premise.serverurl.XXESysAid.API.jsp.Command.InjectionUniSharp.Laravel.Filemanager.upload.Remote.Code.ExecutionHoneywell.MB-Secure.ping.Command.InjectionWordPress.Depicter.Slider.Popup.Builder.SQL.InjectionAlltena.Allegra.unzipFileIntoDirectory.Path.TraversalTenda.Routers.fromSetIpBind.Buffer.OverflowTenda.Routers.formWrlsafeset.Buffer.OverflowTOTOLINK.A3002R.formMapDel.Command.InjectionTOTOLINK.A3002R.formDhcpv6s.addrPoolEnd.Buffer.OverflowTOTOLINK.A3002R.formDhcpv6s.addrPoolStart.Buffer.OverflowTOTOLINK.A3002R.formMapDelDevice.Buffer.OverflowTOTOLINK.A3002R.formIpv6Setup.static_dns.Buffer.OverflowZyxel.CPE.routers.diagAddr.OS.Command.InjectionIvanti.EPMM.CVE-2025-4428.Remote.Code.ExecutionModified (18)TOTOLINK.N150RT.formVlan.Buffer.OverflowSaltStack.Salt.API.SSH.Client.Command.InjectionNAKIVO.Director.Router.Arbitrary.File.ReadAdobe.Acrobat.Triangle.Object.Memory.CorruptionTOTOLINK.N150RT.formPortFw.Buffer.OverflowTOTOLINK.N150RT.formWsc.Buffer.OverflowTOTOLINK.N150RT.formWlwds.Buffer.OverflowTOTOLINK.N150RT.formWdsEncrypt.Buffer.OverflowMS.Windows.CVE-2025-24063.Privilege.ElevationMS.Windows.CVE-2025-29841.Privilege.ElevationMS.Office.CVE-2025-30377.Remote.Code.ExecutionMS.Office.CVE-2025-30386.Remote.Code.ExecutionMS.Windows.CVE-2025-30388.Remote.Code.ExecutionBackdoor.BPFDoorMS.DWM.CVE-2025-30400.Privilege.ElevationMS.Windows.CVE-2025-30397.Memory.CorruptionMS.Windows.CVE-2025-32701.Privilege.ElevationMS.Windows.CVE-2025-32706.Privilege.Elevation
32.010
15 days ago
Newly Added (7)Samsung.MagicINFO.Path.TraversalTOTOLINK.A720R.getInitCfg.Information.DisclosureTOTOLINK.A720R.clearDiagnosisLog.Authentication.BypassNETGEAR.Devices.BRS_top.Information.DisclosureTenda.Devices.goform.telnet.Authentication.BypassWordPress.ConvertPlus.plugin.cp_dismiss_notice.DoSWordPress.OttoKit.st_authorization.Authentication.BypassModified (15)MS.Windows.MMC.CVE-2024-43572.Remote.Code.ExecutionSAP.AS.JAVA.SSO.Authentication.Library.Resource.Exhaustion.DoSOpenEMR.CVE-2020-19364.controller.php.Remote.Code.ExecutionNEXTU.AX1500.formFilter.Buffer.OverflowLinksys.E7350.vif_disable.Command.InjectionLinksys.E7350.apcli_do_enr_pbc_wps.Command.InjectionLinksys.E7350.vif_enable.Command.InjectionPLANET.Technology.Devices.dispatcher.cgi.Command.InjectionLinksys.E7350.reset_wifi.Command.InjectionLinksys.E7350.apcli_do_enr_pin_wps.Command.InjectionLinksys.E7350.apcli_wps_gen_pincode.Command.InjectionLinksys.E7350.apcli_cancel_wps.Command.InjectionHP.Wolf.Security.Controller.deviceAPI.Authentication.BypassCisco.Smart.Licensing.Utility.Static.Credential.Security.BypassSonicWall.SMA100.nobody.Command.Injection
32.009
20 days ago
Newly Added (11)Vite.server.fs.deny.import.Arbitrary.File.ReadVite.server.fs.deny.raw.Arbitrary.File.ReadVite.server.fs.deny.inline.Arbitrary.File.ReadGoogle.Chrome.V8.WasmGCTypeAnalyzer.Phi.Node.Type.ConfusionD-Link.Routers.upnp_ctrl.asp.Buffer.OverflowD-Link.Routers.file.data.Buffer.OverflowAlltena.Allegra.isZipEntryValide.Path.TraversalD-Link.Routers.mrclfile_del.asp.Buffer.OverflowGLPI-Project.GLPI.fileupload.Arbitrary.File.UploadTOTOLINK.A720R.showSyslog.Information.DisclosureGNU.Mailman.username.Path.TraversalModified (12)MS.Office.EQNEDT32.EXE.Equation.Parsing.Memory.CorruptionWavlink.Devices.login.cgi.Command.InjectionApache.Tomcat.CVE-2025-31650.DoSD-Link.DI-8100.ip_position.asp.Buffer.OverflowKentico.CMS.Staging.SyncServer.Remote.Command.ExecutionSaltStack.Salt.API.SSH.Client.Command.InjectionEramba.download-test-pdf.Authenticated.Remote.Code.ExecutionPandora.FMS.index.php.Authenticated.Remote.Code.ExecutionLangflow.validate_code.Remote.Code.ExecutionBentoML.deserialize_value.Insecure.DeserializationPrestaShop.ndk_steppingpack.SQL.InjectionWordPress.Steveas.WP.Live.Chat.Shoutbox.SQL.InjectionRemoved (3)Wavlink.AC3000.login.cgi.restart_hour_value.Command.InjectionWavlink.AC3000.login.cgi.restart_min_value.Command.InjectionWavlink.AC3000.login.cgi.restart_week_value.Command.Injection
32.008
21 days ago
Modified (14)D-Link.DI-8003.jingx_asp.Buffer.OverflowMultiple.Vendors.ICMP.Remote.DoSMultiple.Vendors.DNS.Message.Decompression.DoSMultiple.Vendors.TCP.Timestamp.Option.DoSMultiple.Vendors.Antivirus.RAR.File.DoSMultiple.Vendors.libwpd.WP3TablesGroup.Buffer.OverflowMultiple.Vendors.SOAP.DoSMultiple.Vendors.Browser.HTMLSelectElement.DoSMultiple.Vendors.Unspecified.SVG.File.Processing.DoSMultiple.Vendors.Antivirus.Extended.ASCII.Security.BypassApache.Camel.tryPattern.Query.Parameter.Command.InjectionHPE.Insight.Remote.Support.DESTA.Insecure.DeserializationFortinet.FortiWeb.gui_upload_compress_act.Command.InjectionBentoML.runner_app.Insecure.Deserialization