Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Positive Technologies
Positive Technologiesadded 13 hours ago9 views

PT-2026-47170

A security vulnerability has been detected in GL.iNet GL-MT3000 4.4.5. The impacted element is the function rpc sys of the file /cgi-bin/luci/rpc of the component LuCI JSON-RPC Interface. Such manipulation leads to command injection. The attack may be performed from remote. Upgrading to version...

6.5CVSS6.2AI score
Exploits0References7
RedhatCVE
RedhatCVEadded 2026/01/09 10:58 a.m.3 views

CVE-2025-67091

An issue in GL Inet GL.Inet AX1800 Version 4.6.4 & 4.6.8 are vulnerable. GL.Inet AX1800 Version 4.6.4 & 4.6.8 in the GL.iNet custom opkg wrapper script located at /usr/libexec/opkg-call. The script is executed with root privileges when triggered via the LuCI web interface or authenticated API cal...

6.5CVSS7.1AI score0.00043EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-6269

Malware in sbrugna...

7.8CVSS7.6AI score0.00049EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-17078

Malware in sbrugna...

10CVSS9.5AI score0.07455EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2023/04/11 12:0 a.m.3 views

PT-2023-5118 · Luci +1 · Luci +1

Name of the Vulnerable Software and Affected Versions: OpenWrt versions prior to the version with the fixed LuCI openwrt-22.03 branch LuCI openwrt-22.03 branch git-22.361.69894-438c598 Description: The issue is related to a stored cross-site scripting XSS vulnerability in the sshkeys.js component...

6.4CVSS5.3AI score0.00269EPSS
Exploits1References8
OSV
OSVadded 2021/02/01 2:15 a.m.1 views

CVE-2020-13859

An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. A format error in /etc/shadow, coupled with a logic bug in the LuCI - OpenWrt Configuration Interface framework, allows the undocumented system account mofidev to login to the cgi-bin/luci/quick/wizard management interfac...

9.8CVSS5.8AI score0.0034EPSS
Exploits0References2
CNVD
CNVDadded 2019/04/01 12:0 a.m.2 views

Teltonika RUT9XX Authentication Vulnerability

Teltonika RUT9XX LuCI is a LET router product from Teltonika Lithuania. A security vulnerability exists in /cgi-bin/luci in Teltonika RTU9XX R00.05.00.5 prior to version R31.04.89. An attacker could exploit this vulnerability to crack user passwords...

9.8CVSS6.8AI score0.00517EPSS
Exploits1References1
CNVD
CNVDadded 2017/12/19 12:0 a.m.1 views

TP-Link TL-WVR and TL-WAR arbitrary command execution vulnerability (CNVD-2018-01233)

TP-Link TL-WVR and TL-WAR are both wireless router products from China P&L TP-LINK. A security vulnerability exists in the TP-Link TL-WVR and TL-WAR. The vulnerability can be exploited by a remote attacker to execute arbitrary commands by sending the admin/dhcps command with shell metacharacters ...

9CVSS7.8AI score0.01277EPSS
Exploits1References1
CNVD
CNVDadded 2017/11/29 12:0 a.m.6 views

Command Injection Vulnerability in Multiple TP-Link Products

TP-Link TL-WVR and others are wireless router products from China P&L TP-LINK. A command injection vulnerability exists in multiple TP-Link products. The vulnerability can be exploited by a remote attacker to execute arbitrary commands by sending an admin/diagnostic command with shell...

9CVSS8.4AI score0.02893EPSS
Exploits2References1
Rows per page
Query Builder