443 matches found
CVE-2026-35582
Emissary is a P2P based data-driven workflow engine. In versions 8.42.0 and below, Executrix.getCommand is vulnerable to OS command injection because it interpolates temporary file paths into a /bin/sh -c shell command string without any escaping or input validation. The INFILEENDING and...
CVE-2026-6025 Totolink A7100RU CGI cstecgi.cgi setSyslogCfg os command injection
A vulnerability was identified in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument enable leads to os command injection. It is possible to launch the attack remotely. The...
PT-2026-31887
Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A vulnerability exists in the Totolink A7100RU router. The setVpnAccountCfg function within the /cgi-bin/cstecgi.cgi file of the CGI Handler component is susceptible to OS command...
CVE-2026-30816 Arbitrary File Reading Vulnerability in OpenVPN Module in TP-Link AX53
An external control of configuration vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary file when a malicious configuration file is processed. Successful exploitation may allow unauthorized access to arbitrary files on the device,...
PT-2026-31409
Name of the Vulnerable Software and Affected Versions TP-Link AX53 versions prior to 1.7.1 Build 20260213 Description A configuration issue in the OpenVPN module allows a nearby attacker with access to read arbitrary files when a malicious configuration file is processed. Successful exploitation...
TP-Link Archer AX53 安全漏洞
The TP-Link Archer AX53 is a dual-core router produced by TP-Link Corporation. Prior to the version v1.0 1.7.1 Build 20260213, the TP-Link Archer AX53 had a security vulnerability. This vulnerability stemmed from an issue with the external configuration control of the OpenVPN module, which could...
CVE-2026-35463
pyLoad is a free and open-source download manager written in Python. In 0.5.0b3.dev96 and earlier, the ADMINONLYOPTIONS protection mechanism restricts security-critical configuration values reconnect scripts, SSL certs, proxy credentials to admin-only access. However, this protection is only...
CVE-2026-5676
The vulnerability CVE-2026-5676 affects Totolink A8000R (firmware 5.9c.681_B20180413). The issue is in the CGI endpoint /cgi-bin/cstecgi.cgi, specifically the setLanguageCfg function where manipulating the langType argument leads to missing authentication. This enables a remote attacker to levera...
Tenda AC8 操作系统命令注入漏洞
The Tenda AC8 is a wireless router produced by the Chinese company Tenda. The version 16.03.50.11 of the Tenda AC8 has a vulnerability related to operating system command injection. This vulnerability stems from incorrect handling of the parameter “wans.policy.list1” in the /cgi-bin/UploadCfg fil...
PT-2026-25837
Name of the Vulnerable Software and Affected Versions KeePassXC affected versions not specified Description KeePassXC installations are susceptible to local privilege escalation. An attacker who can execute low-privileged code may be able to gain elevated access. This issue is related to the...
CVE-2026-21422
Dell PowerScale OneFS, versions 9.10.0.0 through 9.10.1.5 and versions 9.11.0.0 through 9.12.0.1, contains an external control of system or configuration setting vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to protection mechani...
CVE-2026-28271
Kiteworks Core (PDN) prior to version 9.2.0 contains a SSRF bypass vulnerability in configuration functionality exploitable via DNS rebinding, allowing access to restricted internal services. Patch available in 9.2.0. Exploitation details are not provided in the documents; no explicit in-the-wild...
GFI Archiver 代码问题漏洞
GFI Archiver is an email archiving software developed by GFI Corporation. It is used to protect, store, and retrieve your electronic communications. GFI Archiver has a code vulnerability that stems from a lack of data validation for data provided to users during the configuration of the...
CVE-2026-2535 Comfast CF-N1 V2 mbox-config sub_44AB9C command injection
A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub44AB9C of the file /cgi-bin/mbox-config?method=SET§ion=ptestchannel. The manipulation of the argument channel results in command injection. The attack can be launched remotely. The exploit has been...
Exploit for Incorrect Authorization in Suse Pam-Config
CVE-2025-6018 + CVE-2025-6019 Exploit Chain This exploit was...
Exploit for Incorrect Authorization in Suse Pam-Config
No d...
CVE-2025-52627
Root File System Not Mounted as Read-Only configuration vulnerability. This can allow unintended modifications to critical system files, potentially increasing the risk of system compromise or unauthorized changes.This issue affects AION: 2.0...
CVE-2025-52627
Root File System Not Mounted as Read-Only configuration vulnerability. This can allow unintended modifications to critical system files, potentially increasing the risk of system compromise or unauthorized changes.This issue affects AION: 2.0...
EUVD-2025-206681
Root File System Not Mounted as Read-Only configuration vulnerability. This can allow unintended modifications to critical system files, potentially increasing the risk of system compromise or unauthorized changes.This issue affects AION: 2.0...
CVE-2025-52627
CVE-2025-52627 affects HCL AION (AI lifecycle management platform) 2.0, where the root filesystem is not mounted read-only, allowing unintended modifications to critical system files and potential system compromise. Connected sources corroborate the issue and cite root-file-system write access as...