EUVD-2026-17624

Admidio is an open-source user management solution. From version 5.0.0 to before version 5.0.8, the delete mode handler in mylistfunction.php permanently deletes list configurations without validating a CSRF token. An attacker who can lure an authenticated user to a malicious page can silently...

CVE-2026-0834

CVE-2026-0834 affects TP-Link Archer C20 v6.0 (firmware before V6_251031) and Archer AX53 v1.0 (firmware before V1_251215) via the TDDP module. A logic vulnerability allows unauthenticated adjacent attackers to remotely execute administrative commands, including factory reset and device reboot, w...

CVE-2026-0834 Logic Vulnerability on TP-Link Archer C20, Archer AX53 and TL-WR841N v13

Logic vulnerability in TP-Link Archer C20 v5, 6.0, Archer AX53 v1.0 and TL-WR841N v13 TDDP module allows unauthenticated adjacent attackers to execute administrative commands including factory reset and device reboot without credentials. Attackers on the adjacent network can remotely trigger...

CVE-2026-22916

An attacker with low privileges may be able to trigger critical system functions such as reboot or factory reset without proper restrictions, potentially leading to service disruption or loss of configuration...

CVE-2026-22916

CVE-2026-22916 describes a low-privilege attacker able to trigger critical system functions (reboot/factory reset) with potential service disruption or configuration loss. Public sources confirm an attacker could exploit this over network with low complexity, and impact on availability is stated....

EUVD-2026-2817

An attacker with low privileges may be able to trigger critical system functions such as reboot or factory reset without proper restrictions, potentially leading to service disruption or loss of configuration...

CVE-2026-22916

An attacker with low privileges may be able to trigger critical system functions such as reboot or factory reset without proper restrictions, potentially leading to service disruption or loss of configuration...

CVE-2020-7800

The Synergy Systems & Solutions SSS HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has an Improper Check for Unusual or Exceptional Conditions CWE-754 vulnerability. The affected product is vulnerable to specially crafted TCP packets, which can cause the device to shut down or reboot a...

CVE-2023-7329 Tinycontrol LAN Controller v3 (LK3) Remote DoS

Tinycontrol LAN Controller v3 LK3 firmware versions up to 1.58a hardware v3.8 contain a missing authentication vulnerability in the stm.cgi endpoint. A remote, unauthenticated attacker can send crafted requests to forcibly reboot the device or restore factory settings, leading to a denial of...

Tinycontrol LAN Controller 安全漏洞

Tinycontrol LAN Controller is a building automation controller from the Polish company Tinycontrol. A security vulnerability exists in Tinycontrol LAN Controller v3 1.58a and earlier versions, which stems from a lack of authentication in the stm.cgi endpoint and could lead to a denial of service...

EUVD-2021-18545

Malware in sbrugna...

EUVD-2009-1152

Malware in sbrugna...

EUVD-2025-6009

Malicious code in bioql PyPI...

CVE-2025-27094 Tuleap allows default values to be cleared from field configuration

Tuleap is an open-source suite designed to improve software development management and collaboration. A malicious user with access to a tracker could force-reset certain field configurations, leading to potential information loss. The display time attribute for the date field, the size attribute...

CVE-2022-39064

An attacker sending a single malformed IEEE 802.15.4 Zigbee frame makes the TRÅDFRI bulb blink, and if they replay i.e. resend the same frame multiple times, the bulb performs a factory reset. This causes the bulb to lose configuration information about the Zigbee network and current brightness...

CVE-2020-7800

The Synergy Systems & Solutions SSS HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has an Improper Check for Unusual or Exceptional Conditions CWE-754 vulnerability. The affected product is vulnerable to specially crafted TCP packets, which can cause the device to shut down or reboot a...

3Com HomeConnect Cable Modem vulnerable to DoS via long string of characters

Overview Intruders can disrupt the normal operation of a 3Com HomeConnect Cable Modem. Description The 3Com HomeConnect Cable Modem contains a web server. This web server is used to administer the cable modem. By default, this web server is configured to allow any user local or remote to connect ...