Lucene search
K

154 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-29862

Malware in sbrugna...

6.5CVSS6.6AI score0.0106EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-4564

Malware in sbrugna...

5CVSS6.3AI score0.26482EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-6859

Malware in sbrugna...

6.1CVSS6.3AI score0.00675EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-20632

Malware in sbrugna...

6.1CVSS6.3AI score0.00694EPSS
Exploits1References2
NVD
NVD
added 2025/10/06 2:15 p.m.5 views

CVE-2025-11337

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...

6.9CVSS0.0064EPSS
Exploits0References4
NVD
NVD
added 2025/10/06 2:15 p.m.8 views

CVE-2025-11336

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. Affected by this issue is some unknown functionality of the file /stAlarmConfigure/index.do/../../aloneReport/download.do;otherlogout.do. Such manipulation of the argument fileName leads...

6.9CVSS0.0064EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/06 1:32 p.m.10 views

CVE-2025-11337 Four-Faith Water Conservancy Informatization Platform download.do;othersusrlogout.do path traversal

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2. This affects an unknown part of the file /aloneReport/index.do/../../aloneReport/download.do;othersusrlogout.do. Performing manipulation of the argument fileName results in path traversal. It is...

6.9CVSS0.0064EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/06 12:0 a.m.4 views

Four-Faith Water Conservancy Informatization Platform 路径遍历漏洞

Four-Faith Water Conservancy Informatization Platform is a water conservancy informatization system from Four-Faith. A path traversal vulnerability exists in Four-Faith Water Conservancy Informatization Platform version 2.2 and prior versions, which stems from an incorrect manipulation of the...

6.9CVSS5.8AI score0.0064EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/06 12:0 a.m.4 views

Four-Faith Water Conservancy Informatization Platform 路径遍历漏洞

Four-Faith Water Conservancy Informatization Platform is a water conservancy informatization system from Four-Faith. A path traversal vulnerability exists in Four-Faith Water Conservancy Informatization Platform version 2.2 and prior versions, which stems from an incorrect manipulation of the...

6.9CVSS5.8AI score0.0064EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/06 12:0 a.m.4 views

PT-2025-40894

Name of the Vulnerable Software and Affected Versions Four-Faith Water Conservancy Informatization Platform versions prior to 2.3 Description A path traversal issue exists in Four-Faith Water Conservancy Informatization Platform. The issue affects files including...

6.9CVSS5.3AI score0.0064EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25756

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00693EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-27394

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.02692EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/21 12:8 p.m.7 views

CVE-2025-10709

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this issue is some unknown functionality of the file /history/historyDownload.do;otheruserLogin.do;getfile. The manipulation of the argument fileName results in path traversal. The attack can be...

6.9CVSS6.7AI score0.00894EPSS
Exploits1References1
NVD
NVD
added 2025/09/19 12:15 p.m.6 views

CVE-2025-10709

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this issue is some unknown functionality of the file /history/historyDownload.do;otheruserLogin.do;getfile. The manipulation of the argument fileName results in path traversal. The attack can be...

7.5CVSS0.00894EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/09/17 12:49 a.m.12 views

CVE-2025-52053

TOTOLINK X6000R V9.4.0cu.1360B20241207 was found to contain a command injection vulnerability in the sub417D74 function via the filename parameter. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a crafted request...

9.8CVSS8.3AI score0.04374EPSS
Exploits1References1
EUVD
EUVD
added 2025/09/15 3:31 p.m.7 views

EUVD-2025-29199

TOTOLINK X6000R V9.4.0cu.1360B20241207 was found to contain a command injection vulnerability in the sub417D74 function via the filename parameter. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a crafted request...

9.8CVSS7.8AI score0.04374EPSS
Exploits1References3
OSV
OSV
added 2025/09/15 3:15 p.m.5 views

CVE-2025-52053

TOTOLINK X6000R V9.4.0cu.1360B20241207 was found to contain a command injection vulnerability in the sub417D74 function via the filename parameter. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a crafted request...

9.8CVSS6.1AI score0.04374EPSS
Exploits1References2
NVD
NVD
added 2025/09/15 3:15 p.m.9 views

CVE-2025-52053

TOTOLINK X6000R V9.4.0cu.1360B20241207 was found to contain a command injection vulnerability in the sub417D74 function via the filename parameter. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a crafted request...

9.8CVSS0.04374EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/09/15 12:0 a.m.3 views

CVE-2025-52053

TOTOLINK X6000R V9.4.0cu.1360B20241207 was found to contain a command injection vulnerability in the sub417D74 function via the filename parameter. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a crafted request...

7.9AI score0.04374EPSS
Exploits1References2
CVE
CVE
added 2025/09/15 12:0 a.m.20 views

CVE-2025-52053

The CVE-2025-52053 entry concerns TOTOLINK X6000R firmware (version 9.4.0cu.1360_B20241207). Several connected sources confirm a command injection in the sub_417D74 function triggered by the file_name parameter, enabling unauthenticated arbitrary command execution. This is rooted in insufficient ...

9.8CVSS7.9AI score0.04374EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder