167 matches found
CVE-2026-6610
creationtimestamp| type| source ---|---|--- 2026-04-20 08:04:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjvz24uuwb2k...
CVE-2026-6610
A vulnerability has been found in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an unknown function of the file djangoblog/settings.py of the component Setting Handler. Such manipulation of the argument USER/PASSWORD leads to hard-coded credentials. The attack may be launched...
CVE-2026-6610
The vulnerability CVE-2026-6610 affects the DjangoBlog project by liangliangyy, up to version 2.1.0.0. The issue resides in the Setting Handler, specifically in an unknown function within djangoblog/settings.py, where manipulation of USER/PASSWORD arguments leads to hard-coded credentials. Exploi...
Advantech WISE-6610 OS Command Injection Vulnerability
Advantech WISE-6610 is a core gateway device from Advantech, Taiwan, China. The Advantech WISE-6610 suffers from an operating system command injection vulnerability that originates from a misuse of the parameter deletefile in the file /cgi-bin/luci/admin/openvpnapply, which can be exploited by an...
Exploit for CVE-2026-2670
exploit-CVE-2026-2670 CVE-2026-2670 – Advantech WISE-6610...
Exploit for CVE-2026-2670
exploit-CVE-2026-2670 CVE-2026-2670 – Advantech WISE-6610...
CVE-2026-2670
A vulnerability was identified in Advantech WISE-6610 1.2.120251110. Affected is an unknown function of the file /cgi-bin/luci/admin/openvpnapply of the component Background Management. Such manipulation of the argument deletefile leads to os command injection. The attack can be executed remotely...
CVE-2026-2670
A vulnerability was identified in Advantech WISE-6610 1.2.120251110. Affected is an unknown function of the file /cgi-bin/luci/admin/openvpnapply of the component Background Management. Such manipulation of the argument deletefile leads to os command injection. The attack can be executed remotely...
CVE-2026-2670
Affected product/versions: Advantech WISE-6610 (1.2.1_20251110). Vulnerable component/file: /cgi-bin/luci/admin/openvpn_apply in the Background Management module. Root cause / condition: Manipulation of the argument delete_file enables an OS command injection. Impact: Remote execution possible wi...
CVE-2026-2670 Advantech WISE-6610 Background Management openvpn_apply os command injection
A vulnerability was identified in Advantech WISE-6610 1.2.120251110. Affected is an unknown function of the file /cgi-bin/luci/admin/openvpnapply of the component Background Management. Such manipulation of the argument deletefile leads to os command injection. The attack can be executed remotely...
CVE-2026-2670 Advantech WISE-6610 Background Management openvpn_apply os command injection
A vulnerability was identified in Advantech WISE-6610 1.2.120251110. Affected is an unknown function of the file /cgi-bin/luci/admin/openvpnapply of the component Background Management. Such manipulation of the argument deletefile leads to os command injection. The attack can be executed remotely...
Advantech WISE-6610 操作系统命令注入漏洞
Advantech WISE-6610 is a core gateway device from Advantech, Taiwan, China. The Advantech WISE-6610 suffers from an operating system command injection vulnerability that originates from a misuse of the parameter deletefile in the file /cgi-bin/luci/admin/openvpnapply, which can be exploited by an...
PT-2026-20509
Name of the Vulnerable Software and Affected Versions Advantech WISE-6610 version 1.2.1 20251110 Description A flaw exists in Advantech WISE-6610 that allows remote execution of operating system commands. This is due to improper handling of the delete file argument within an unknown function of t...
CVE-2023-6610 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-qemu-melange, linux-vmware...
CVE-2023-43203
D-LINK DWL-6610 FWv4.3.0.8B003C was discovered to contain a stack overflow vulnerability in the function updateusers...
CVE-2023-43206
D-LINK DWL-6610 FWv4.3.0.8B003C was discovered to contain a command injection vulnerability in the function webcertdownloadhandler. This vulnerability allows attackers to execute arbitrary commands via the certDownload parameter...
CVE-2023-43202
D-LINK DWL-6610 FWv4.3.0.8B003C was discovered to contain a command injection vulnerability in the function pcapdownloadhandler. This vulnerability allows attackers to execute arbitrary commands via the update.device.packet-capture.tftp-file-name parameter...
EUVD-2024-24529
Malicious code in bioql PyPI...
EUVD-2023-47622
Malicious code in bioql PyPI...
EUVD-2023-47626
Malicious code in bioql PyPI...