Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/03/27 2:24 p.m.4 views

CVE-2021-27708

Command Injection in TOTOLINK X5000R router with firmware v9.1.0u.6118B20201102, and TOTOLINK A720R router with firmware v4.1.5cu.470B20200911 allows remote attackers to execute arbitrary OS commands by sending a modified HTTP request. This occurs because the function executes glibc's system...

10CVSS8.4AI score0.2015EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/12/23 1:18 p.m.3 views

CVE-2024-27708

Iframe injection vulnerability in airc.pt/solucoes-servicos.solucoes MyNET v.26.06 and before allows a remote attacker to execute arbitrary code via the src parameter...

9.6CVSS8.2AI score0.0027EPSS
Exploits1References1
Circl
Circladded 2025/12/22 9:45 p.m.1 views

CVE-2024-27708

creationtimestamp| type| source ---|---|--- 2025-12-22 21:45:08+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mam7fccghq22...

9.6CVSS5.8AI score0.0027EPSS
Exploits1References1
CVE
CVEadded 2025/12/22 12:0 a.m.9 views

CVE-2024-27708

CVE-2024-27708 affects AIRC MyNET v26.06 and earlier. An iframe injection via the src parameter allows remote code execution with network access and user interaction required. The vulnerability impact is rated CRITICAL (CVSS 3.1: AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H). Red Hat and ENISA/EUVD entrie...

9.6CVSS7.9AI score0.0027EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2025/12/22 12:0 a.m.1 views

CVE-2024-27708

Iframe injection vulnerability in airc.pt/solucoes-servicos.solucoes MyNET v.26.06 and before allows a remote attacker to execute arbitrary code via the src parameter...

7.9AI score0.0027EPSS
Exploits1References2
CVE
CVEadded 2021/04/14 3:1 p.m.49 views

CVE-2021-27708

CVE-2021-27708 describes a command injection in TOTOLINK X5000R (firmware v9.1.0u.6118_B20201102) and TOTOLINK A720R (firmware v4.1.5cu.470_B20200911). The issue arises when the code calls glibc’s system() with untrusted input and passes the attacker-controlled "+command" parameter directly, enab...

10CVSS9.9AI score0.2015EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2020/11/12 6:15 p.m.13 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-27708. Reason: This candidate is a reservation duplicate of ID. Notes: All CVE users should reference CVE-2020-27708 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

7.6AI score0.00127EPSS
Exploits1
CVE
CVEadded 2020/11/12 5:7 p.m.27 views

CVE-2020-16091

CVE-2020-16091 is a reservation duplicate of CVE-2020-27708. Connected records describe a vulnerability in the Origin Client that could allow a non-administrative user to elevate privileges to Administrator or System, enabling control of the system. There are no vendor/version specifics or remedi...

7.6AI score
Exploits0
CVE
CVEadded 2020/10/30 4:23 p.m.1589 views

CVE-2020-27708

Origin Client contains a privilege-escalation vulnerability that could allow a non-administrative user to obtain Administrator or System rights, enabling control of the system and actions reserved for high-privileged users. The CVE-2020-27708 entry is corroborated by multiple connected sources (N...

7.8CVSS7.4AI score0.00127EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder