Lucene search
+L

19 matches found

osv
osv
added 2023/12/04 1:15 p.m.6 views

CVE-2023-48800

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub417338 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

9.8CVSS5.9AI score0.0155EPSS
Exploits1References2
cnnvd
cnnvd
added 2023/12/04 12:0 a.m.6 views

TOTOLINK X6000R Security Breach

TOTOLINK X6000R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK X6000R version V9.4.0cu.852B20230719, which originates from the sub417338 function of the shttpd file that obtains fields from the front-end, connects them via the snprintf...

9.8CVSS7.2AI score0.0155EPSS
Exploits1References2
osv
osv
added 2023/12/01 11:15 p.m.8 views

CVE-2023-48801

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub415534 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

9.8CVSS5.9AI score0.01693EPSS
Exploits1References2
attackerkb
attackerkb
added 2023/12/01 11:15 p.m.4 views

CVE-2023-48801

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub415534 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

9.8CVSS7.4AI score0.01693EPSS
Exploits1References3
osv
osv
added 2023/11/30 6:15 p.m.8 views

CVE-2023-48811

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function that when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS7.4AI score0.01536EPSS
Exploits1References1
attackerkb
attackerkb
added 2023/11/30 6:15 p.m.6 views

CVE-2023-48812

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file sub4119A0 function obtains fields from the front-end through Uci Set The Str function that when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS7.4AI score0.01536EPSS
Exploits1References2
osv
osv
added 2023/11/30 6:15 p.m.5 views

CVE-2023-48808

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS5.9AI score
Exploits0References1
attackerkb
attackerkb
added 2023/11/30 6:15 p.m.7 views

CVE-2023-48808

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS7.5AI score0.01536EPSS
Exploits1References2
osv
osv
added 2023/11/30 6:15 p.m.9 views

CVE-2023-48810

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS5.9AI score0.01536EPSS
Exploits1References1
osv
osv
added 2023/11/30 6:15 p.m.10 views

CVE-2023-48812

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file sub4119A0 function obtains fields from the front-end through Uci Set The Str function that when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS5.9AI score0.01536EPSS
Exploits1References1
attackerkb
attackerkb
added 2023/11/30 6:15 p.m.5 views

CVE-2023-48804

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS7.4AI score0.01536EPSS
Exploits1References2
attackerkb
attackerkb
added 2023/11/30 6:15 p.m.5 views

CVE-2023-48803

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS7.5AI score0.01536EPSS
Exploits1References2
osv
osv
added 2023/11/30 6:15 p.m.5 views

CVE-2023-48803

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS5.9AI score0.01536EPSS
Exploits1References1
osv
osv
added 2023/11/30 6:15 p.m.5 views

CVE-2023-48806

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS5.9AI score0.01536EPSS
Exploits1References1
osv
osv
added 2023/11/30 6:15 p.m.6 views

CVE-2023-48804

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS5.9AI score0.01536EPSS
Exploits1References1
osv
osv
added 2023/11/30 6:15 p.m.7 views

CVE-2023-48802

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS5.9AI score0.01536EPSS
Exploits1References1
attackerkb
attackerkb
added 2023/11/30 6:15 p.m.9 views

CVE-2023-48806

In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...

9.8CVSS7.4AI score0.01536EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2023/11/30 12:0 a.m.8 views

PT-2023-7632 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X6000R version 9.4.0cu.852 B20230719 Description: The issue arises from the sub 4119A0 function in the shttpd file, which obtains fields from the front-end through the Uci Set The Str function. When these fields are passed to the...

9.8CVSS9.6AI score0.01536EPSS
Exploits1References7
attackerkb
attackerkb
added 2021/08/11 11:15 p.m.4 views

CVE-2021-37626

Contao is an open source CMS that allows you to create websites and scalable web applications. In affected versions it is possible to load PHP files by entering insert tags in the Contao back end. Installations are only affected if they have untrusted back end users who have the rights to modify...

7.2CVSS7AI score0.01254EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder