[30/03/2026 18:19] Ao lançar pré-candidatura, Caiado critica polarização, promete anistia a Bolsonaro, afirma que 'acredita na ciência' e alfineta Flávio - O Globo

[30/03/2026 17:34] Em resposta a Moraes, Bolsonaro diz desconhecer vídeo de Eduardo - Poder360

[30/03/2026 19:13] Mãe e filho morrem em acidente entre ônibus e bicicleta elétrica na Tijuca - O Globo

[30/03/2026 13:12] Passageiros gravam explosão em motor de avião após decolagem; veja - Correio Braziliense

[30/03/2026 18:08] Lula anuncia Leonardo Barchini como novo ministro da Educação - Correio Braziliense

[30/03/2026 16:13] “Eles têm problema na família”, diz Valdemar sobre os Bolsonaro - O Antagonista

[30/03/2026 15:45] CNJ afasta desembargador do TJ/MG que atuava no caso da 123 Milhas - Migalhas

[30/03/2026 12:36] Acidente na BR-040 em Nova Lima mata uma pessoa e deixa outra ferida - Estado de Minas

[30/03/2026 16:35] Celina cancela festa de aniversário de Brasília para investir R$ 25 mi na Saúde - Correio Braziliense

[30/03/2026 11:20] 13 de abril será feriado em Fortaleza, anuncia Evandro - Diário do Nordeste

[CVE-2025-13797] [Modified: 11-12-2025] [Analyzed] [V3.1 S6.3:MEDIUM] A vulnerability was detected in ADSLR B-QE2W401 250814-r037c. Affected by this issue is the function parameterdel_swifimac of the file /send_order.cgi. Performing manipulation of the argument del_swifimac results in command injection. The attack is possible to be carried out remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-13798] [Modified: 11-12-2025] [Analyzed] [V3.1 S6.3:MEDIUM] A flaw has been found in ADSLR NBR1005GPEV2 250814-r037c. This affects the function ap_macfilter_add of the file /send_order.cgi. Executing manipulation of the argument mac can lead to command injection. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-13799] [Modified: 11-12-2025] [Analyzed] [V3.1 S6.3:MEDIUM] A vulnerability has been found in ADSLR NBR1005GPEV2 250814-r037c. This vulnerability affects the function ap_macfilter_del of the file /send_order.cgi. The manipulation of the argument mac leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-13800] [Modified: 11-12-2025] [Analyzed] [V3.1 S6.3:MEDIUM] A vulnerability was found in ADSLR NBR1005GPEV2 250814-r037c. This issue affects the function set_mesh_disconnect of the file /send_order.cgi. The manipulation of the argument mac results in command injection. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-13806] [Modified: 30-12-2025] [Analyzed] [V3.1 S7.3:HIGH] A security vulnerability has been detected in nutzam NutzBoot up to 2.6.0-SNAPSHOT. This impacts an unknown function of the file nutzboot-demo/nutzboot-demo-simple/nutzboot-demo-simple-web3j/src/main/java/io/nutz/demo/simple/module/EthModule.java of the component Transaction API. The manipulation of the argument from/to/wei leads to improper authorization. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

[CVE-2025-13807] [Modified: 04-12-2025] [Analyzed] [V3.1 S4.3:MEDIUM] A vulnerability was detected in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1. Affected is the function MachineKeyController of the file orion-ops-api/orion-ops-web/src/main/java/cn/orionsec/ops/controller/MachineKeyController.java of the component API. The manipulation results in improper authorization. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-13808] [Modified: 04-12-2025] [Analyzed] [V3.1 S7.3:HIGH] A flaw has been found in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1. Affected by this vulnerability is the function update of the file orion-ops-api/orion-ops-web/src/main/java/cn/orionsec/ops/controller/UserController.java of the component User Profile Handler. This manipulation of the argument ID causes improper authorization. The attack is possible to be carried out remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-13809] [Modified: 04-12-2025] [Analyzed] [V3.1 S6.3:MEDIUM] A vulnerability has been found in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1. Affected by this issue is some unknown functionality of the file orion-ops-api/orion-ops-web/src/main/java/cn/orionsec/ops/controller/MachineInfoController.java of the component SSH Connection Handler. Such manipulation of the argument host/sshPort/username/password/authType leads to server-side request forgery. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. A patch should be applied to remediate this issue. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-13813] [Modified: 03-12-2025] [Analyzed] [V3.1 S5.6:MEDIUM] A vulnerability was identified in moxi159753 Mogu Blog v2 up to 5.2. This issue affects some unknown processing of the file /storage/ of the component Storage Management Endpoint. The manipulation leads to missing authorization. The attack can be initiated remotely. The attack's complexity is rated as high. The exploitability is assessed as difficult. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-11131] [Modified: 01-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-11132] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-11133] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-13814] [Modified: 03-12-2025] [Analyzed] [V3.1 S7.3:HIGH] A security flaw has been discovered in moxi159753 Mogu Blog v2 up to 5.2. Impacted is the function LocalFileServiceImpl.uploadPictureByUrl of the file /file/uploadPicsByUrl. The manipulation results in server-side request forgery. The attack can be launched remotely. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

[CVE-2025-3012] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In dpc modem, there is a possible system crash due to null pointer dereference. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-61607] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-61608] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-61609] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-61610] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-61617] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

[CVE-2025-61618] [Modified: 02-12-2025] [Analyzed] [V3.1 S7.5:HIGH] In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed