Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2025/05/05 5:18 p.m.4 views

CVE-2024-57234

NETGEAR RAX5 AX1600 WiFi Router V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apclicancelwps function...

9.8CVSS5.8AI score0.01198EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/05/05 12:0 a.m.2 views

PT-2025-19723 · NetGear · Netgear Rax5

Name of the Vulnerable Software and Affected Versions: NETGEAR RAX5 version 1.0.2.26 Description: A command injection issue was discovered in the NETGEAR RAX5 AX1600 WiFi Router via the ifname parameter in the apcli cancel wps function. This allows for potential exploitation. Recommendations: For...

9.8CVSS7AI score0.01198EPSS
Exploits1References5
OSV
OSVadded 2025/04/04 2:15 p.m.2 views

CVE-2025-3249

A vulnerability classified as critical was found in TOTOLINK A6000R 1.0.1-B20201211.2000. Affected by this vulnerability is the function apclicancelwps of the file /usr/lib/lua/luci/controller/mtkwifi.lua. The manipulation leads to command injection. The attack can be launched remotely. The explo...

9.8CVSS5.5AI score0.02509EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/04/04 12:0 a.m.2 views

TOTOLINK A6000R 注入漏洞

The TOTOLINK A6000R is a high performance wireless router. A command injection vulnerability exists in TOTOLINK A6000R. The vulnerability stems from the mishandling of the apclicancelwps function, and no detailed vulnerability details are provided at this time...

9.8CVSS7.5AI score0.02509EPSS
Exploits1References5
OSV
OSVadded 2025/01/10 6:15 p.m.4 views

CVE-2024-57222

Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the ifname parameter in the apclicancelwps function...

6.3CVSS5.8AI score0.00794EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/01/10 12:0 a.m.3 views

Linksys E7350 安全漏洞

The Linksys E7350 is a wireless router device from Leadsys. A security vulnerability exists in the handling of the ifname parameter in the Linksys E7350 apclicancelwps function, which can be exploited by a remote attacker to submit a special request that can be used in the application context to...

6.3CVSS7.1AI score0.00794EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/01/10 12:0 a.m.3 views

PT-2025-3413 · Linksys · Linksys E7350

Name of the Vulnerable Software and Affected Versions: Linksys E7350 version 1.1.00.032 Description: A command injection issue was discovered via the ifname parameter in the apcli cancel wps function. This allows for potential exploitation. Recommendations: For Linksys E7350 version 1.1.00.032,...

6.3CVSS7.5AI score0.00794EPSS
Exploits1References4
CNNVD
CNNVDadded 2024/07/22 12:0 a.m.2 views

TOTOLINK A6000R 安全漏洞

TOTOLINK A6000R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A6000R suffers from a command injection vulnerability that stems from the ifname parameter in the apclicancelwps function failing to properly filter construct command special characters, commands, and so on...

9.8CVSS7.8AI score0.02469EPSS
Exploits1References2
Rows per page
Query Builder