Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

999 matches found

NVD
NVDadded 2025/07/20 12:15 a.m.6 views

CVE-2025-7858

A vulnerability classified as problematic has been found in PHPGurukul Apartment Visitors Management System 1.0. This affects an unknown part of the file /admin-profile.php of the component HTTP POST Request Handler. The manipulation of the argument adminname leads to cross site scripting. It is...

5.4CVSS0.00234EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/07/19 5:46 p.m.13 views

CVE-2025-7747

A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. The manipulation of the argument PPW leads to buffer overflow. It is possible to initiate the attack...

9CVSS8.9AI score0.00775EPSS
Exploits1References1
NVD
NVDadded 2025/07/19 1:15 p.m.10 views

CVE-2025-7819

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /create-pass.php of the component HTTP POST Request Handler. The manipulation of the argument visname leads to cross site scripting. It...

5.4CVSS0.00237EPSS
Exploits1References5
NVD
NVDadded 2025/07/19 10:15 a.m.7 views

CVE-2025-7815

A vulnerability, which was classified as problematic, has been found in PHPGurukul Apartment Visitors Management System 1.0. This issue affects some unknown processing of the file /manage-newvisitors.php of the component HTTP POST Request Handler. The manipulation of the argument visname leads to...

5.4CVSS0.00237EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/07/19 12:0 a.m.2 views

PT-2025-30123 · Phpgurukul · Phpgurukul Apartment Visitors Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Apartment Visitors Management System version 1.0 Description: A problematic issue exists in the processing of the /manage-newvisitors.php file within the HTTP POST Request Handler component. Manipulation of the visname argument can...

5.4CVSS3.4AI score0.00237EPSS
Exploits1References8
NVD
NVDadded 2025/07/17 10:15 p.m.16 views

CVE-2025-7758

A vulnerability, which was classified as critical, has been found in TOTOLINK T6 up to 4.1.5cu.748B20211015. Affected by this issue is the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to buffer...

9CVSS0.00761EPSS
Exploits1References6
OSV
OSVadded 2025/07/17 6:15 p.m.1 views

CVE-2025-7747

A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. The manipulation of the argument PPW leads to buffer overflow. It is possible to initiate the attack...

8.7CVSS6.3AI score0.00775EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2025/07/17 5:14 p.m.3 views

CVE-2025-7747 Tenda FH451 POST Request WizardHandle fromWizardHandle buffer overflow

A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. The manipulation of the argument PPW leads to buffer overflow. It is possible to initiate the attack...

9CVSS9.1AI score0.00775EPSS
Exploits1References6
CVE
CVEadded 2025/07/17 5:14 p.m.18 views

CVE-2025-7747

The CVE-2025-7747 issue affects Tenda FH451 (version 1.0.0.9). The vulnerability resides in the POST Request Handler’s fromWizardHandle function (file /goform/WizardHandle); manipulating the PPW argument can trigger a buffer overflow. This can be exploited remotely, with public exploits available...

9CVSS8.9AI score0.00775EPSS
Exploits1References6Affected Software1
Cvelist
Cvelistadded 2025/07/17 5:14 p.m.7 views

CVE-2025-7747 Tenda FH451 POST Request WizardHandle fromWizardHandle buffer overflow

A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. The manipulation of the argument PPW leads to buffer overflow. It is possible to initiate the attack...

9CVSS0.00775EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2025/07/15 9:27 a.m.9 views

CVE-2025-7524

A vulnerability was found in TOTOLINK T6 4.1.5cu.748B20211015. It has been classified as critical. This affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to command injection. It is possible ...

8.8CVSS7.9AI score0.03111EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/07/14 11:26 p.m.21 views

CVE-2025-7506

A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromNatlimit of the file /goform/Natlimit of the component HTTP POST Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can ...

9CVSS7.5AI score0.00775EPSS
Exploits1References1
NVD
NVDadded 2025/07/14 3:15 p.m.4 views

CVE-2025-7614

A vulnerability classified as critical has been found in TOTOLINK T6 4.1.5cu.748. Affected is the function delDevice of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ipAddr leads to command injection. It is possible to launch the attack...

8.8CVSS0.02619EPSS
Exploits1References6
Cvelist
Cvelistadded 2025/07/14 2:44 p.m.10 views

CVE-2025-7613 TOTOLINK T6 HTTP POST Request cstecgi.cgi CloudSrvVersionCheck command injection

A vulnerability was found in TOTOLINK T6 4.1.5cu.748. It has been rated as critical. This issue affects the function CloudSrvVersionCheck of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to command injection. The attack may be...

6.5CVSS0.02619EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2025/07/14 6:17 a.m.15 views

CVE-2025-7463

A vulnerability was found in Tenda FH1201 1.2.0.14. It has been declared as critical. This vulnerability affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP POST Request Handler. The manipulation of the argument mitssid leads to buffer overflow. The atta...

9CVSS8.9AI score0.00976EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/07/13 10:8 p.m.9 views

CVE-2025-7460

A vulnerability has been found in TOTOLINK T6 4.1.5cu.748B20211015 and classified as critical. Affected by this vulnerability is the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

9CVSS7.4AI score0.00761EPSS
Exploits1References1
NVD
NVDadded 2025/07/13 9:15 a.m.4 views

CVE-2025-7524

A vulnerability was found in TOTOLINK T6 4.1.5cu.748B20211015. It has been classified as critical. This affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to command injection. It is possible ...

8.8CVSS0.03111EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2025/07/13 12:0 a.m.5 views

PT-2025-29473 · Totolink · Totolink T6

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 Description: A critical issue exists in TOTOLINK T6 version 4.1.5cu.748. The vulnerability is located within the CloudSrvVersionCheck function of the /cgi-bin/cstecgi.cgi file, part of the HTTP POST Request...

8.8CVSS6.7AI score0.02619EPSS
Exploits1References12
Positive Technologies
Positive Technologiesadded 2025/07/13 12:0 a.m.3 views

PT-2025-29475 · Totolink · Totolink T6

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 Description: A critical vulnerability exists in the HTTP POST Request Handler component of TOTOLINK T6. The vulnerability is due to command injection in the clearPairCfg function within the /cgi-bin/cstecgi.cgi...

8.8CVSS7AI score0.02619EPSS
Exploits1References12
NVD
NVDadded 2025/07/12 11:15 p.m.3 views

CVE-2025-7506

A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromNatlimit of the file /goform/Natlimit of the component HTTP POST Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can ...

9CVSS0.00775EPSS
Exploits1References6
Rows per page
Query Builder