90 matches found
EUVD-2023-58189
Malicious code in bioql PyPI...
EUVD-2025-15414
Malicious code in bioql PyPI...
EUVD-2025-27121
Malicious code in bioql PyPI...
CVE-2025-10767
CosmodiumCS OnlyRAT (versions prior to 3.3, affected up to 3.2 per some citations) contains an OS command injection in the Configuration File Handler’s main.py, specifically in the connect/remote_upload/remote_download function where manipulation of configuration["PASSWORD"] can be exploited. Att...
CVE-2025-10093
A vulnerability was identified in D-Link DIR-852 up to 1.00CN B09. Affected by this vulnerability is the function phpcgimain of the file /getcfg.php of the component Device Configuration Handler. Such manipulation leads to information disclosure. The attack may be performed from remote. The explo...
CVE-2025-10093 D-Link DIR-852 Device Configuration getcfg.php phpcgi_main information disclosure
A vulnerability was identified in D-Link DIR-852 up to 1.00CN B09. Affected by this vulnerability is the function phpcgimain of the file /getcfg.php of the component Device Configuration Handler. Such manipulation leads to information disclosure. The attack may be performed from remote. The explo...
D-Link DIR-852 安全漏洞
The D-Link DIR-852 is a router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-852 1.00CN B09 and prior versions, which originates from an information disclosure in the device configuration handler component...
PT-2025-36463
Name of the Vulnerable Software and Affected Versions: D-Link DIR-852 versions up to 1.00CN B09 Description: A vulnerability exists in D-Link DIR-852 that allows for information disclosure. The vulnerability is located in the phpcgi main function of the /getcfg.php file within the Device...
CVE-2025-7076
A vulnerability was found in BlackVue Dashcam 590X up to 20250624. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.cgi of the component Configuration Handler. The manipulation leads to improper access controls. The attack needs to be initiat...
CVE-2025-7076
A vulnerability was found in BlackVue Dashcam 590X up to 20250624. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.cgi of the component Configuration Handler. The manipulation leads to improper access controls. The attack needs to be initiat...
CVE-2025-7076
CVE-2025-7076 affects BlackVue Dashcam 590X up to 20250624. The root cause is an improper access control in the file /upload.cgi of the Configuration Handler, exploitable from the local network. Multiple sources indicate the vulnerability is critical with potential impact on confidentiality, inte...
CVE-2025-6525
A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This vulnerability affects unknown code of the file /cgi-bin/Config.cgi?action=set of the component Configuration Handler. The manipulation leads to improper authorization. The attack needs to be approached within the...
CVE-2025-6525
A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This vulnerability affects unknown code of the file /cgi-bin/Config.cgi?action=set of the component Configuration Handler. The manipulation leads to improper authorization. The attack needs to be approached within the...
CVE-2025-6525 70mai 1S Configuration Config.cgi improper authorization
A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This vulnerability affects unknown code of the file /cgi-bin/Config.cgi?action=set of the component Configuration Handler. The manipulation leads to improper authorization. The attack needs to be approached within the...
CVE-2025-6525 70mai 1S Configuration Config.cgi improper authorization
A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This vulnerability affects unknown code of the file /cgi-bin/Config.cgi?action=set of the component Configuration Handler. The manipulation leads to improper authorization. The attack needs to be approached within the...
PT-2025-26648 · 70Mai · 70Mai 1S
Name of the Vulnerable Software and Affected Versions: 70mai 1S up to 20250611 Description: A problematic issue was found in the Configuration Handler component, affecting the /cgi-bin/Config.cgi?action=set file. This leads to improper authorization. The attack must be launched within the local...
CVE-2024-7900
A vulnerability, which was classified as problematic, was found in xiaohe4966 TpMeCMS 1.3.3.2. Affected is an unknown function of the file /h.php/general/config?ref=addtabs of the component Basic Configuration Handler. The manipulation of the argument Site Name/Beian/Contact...
CVE-2025-4750
A vulnerability, which was classified as problematic, has been found in D-Link DI-7003GV2 24.04.18D1 R68125. This issue affects some unknown processing of the file /H5/getversion.data of the component Configuration Handler. The manipulation leads to information disclosure. The attack may be...
CVE-2025-4750
A vulnerability, which was classified as problematic, has been found in D-Link DI-7003GV2 24.04.18D1 R68125. This issue affects some unknown processing of the file /H5/getversion.data of the component Configuration Handler. The manipulation leads to information disclosure. The attack may be...
CVE-2025-4750 D-Link DI-7003GV2 Configuration get_version.data information disclosure
A vulnerability, which was classified as problematic, has been found in D-Link DI-7003GV2 24.04.18D1 R68125. This issue affects some unknown processing of the file /H5/getversion.data of the component Configuration Handler. The manipulation leads to information disclosure. The attack may be...