Lucene search
K

7797 matches found

RedhatCVE
RedhatCVE
added 2026/01/23 3:21 p.m.7 views

CVE-2026-1327

A security vulnerability has been detected in Totolink NR1800X 9.1.0u.6279B20210910. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Such manipulation of the argument command leads to command injection. The attack can be...

8.8CVSS6.4AI score0.02646EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/23 3:21 p.m.9 views

CVE-2026-1326

A weakness has been identified in Totolink NR1800X 9.1.0u.6279B20210910. This vulnerability affects the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This manipulation of the argument Hostname causes command injection. The attack can be initiated...

8.8CVSS6.5AI score0.03212EPSS
Exploits1References1
OSV
OSV
added 2026/01/22 3:16 p.m.6 views

CVE-2026-1327

A security vulnerability has been detected in Totolink NR1800X 9.1.0u.6279B20210910. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Such manipulation of the argument command leads to command injection. The attack can be...

8.8CVSS5.7AI score0.02646EPSS
Exploits1References5
NVD
NVD
added 2026/01/22 3:16 p.m.4 views

CVE-2026-1327

A security vulnerability has been detected in Totolink NR1800X 9.1.0u.6279B20210910. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Such manipulation of the argument command leads to command injection. The attack can be...

8.8CVSS0.02646EPSS
Exploits1References5
OSV
OSV
added 2026/01/22 3:16 p.m.8 views

CVE-2026-1326

A weakness has been identified in Totolink NR1800X 9.1.0u.6279B20210910. This vulnerability affects the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This manipulation of the argument Hostname causes command injection. The attack can be initiated...

8.8CVSS5.7AI score0.03212EPSS
Exploits1References5
NVD
NVD
added 2026/01/22 3:16 p.m.6 views

CVE-2026-1326

A weakness has been identified in Totolink NR1800X 9.1.0u.6279B20210910. This vulnerability affects the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This manipulation of the argument Hostname causes command injection. The attack can be initiated...

8.8CVSS0.03212EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/22 2:2 p.m.3 views

CVE-2026-1327

A security vulnerability has been detected in Totolink NR1800X 9.1.0u.6279B20210910. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Such manipulation of the argument command leads to command injection. The attack can be...

8.8CVSS6.4AI score0.02646EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/01/22 2:2 p.m.24 views

CVE-2026-1327 Totolink NR1800X POST Request cstecgi.cgi setTracerouteCfg command injection

A security vulnerability has been detected in Totolink NR1800X 9.1.0u.6279B20210910. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Such manipulation of the argument command leads to command injection. The attack can be...

6.5CVSS0.02646EPSS
Exploits1References5
NVD
NVD
added 2026/01/20 1:16 p.m.4 views

CVE-2025-41025

Stored Cross-Site Scripting XSS in Poultry Farm Management System v1.0 due to the lack of proper validation of user input by sending a POST request. The relationship between parameters and assigned identifiers is as follows: 'category' y 'product' parameters in '/farm/sellproduct.php'...

5.4CVSS0.00133EPSS
Exploits0References1
OSV
OSV
added 2026/01/20 1:16 p.m.3 views

CVE-2025-41025

Stored Cross-Site Scripting XSS in Poultry Farm Management System v1.0 due to the lack of proper validation of user input by sending a POST request. The relationship between parameters and assigned identifiers is as follows: 'category' y 'product' parameters in '/farm/sellproduct.php'...

5.4CVSS5.8AI score0.00133EPSS
Exploits0References1
OSV
OSV
added 2026/01/20 12:15 p.m.4 views

CVE-2025-41024

Stored Cross-Site Scripting XSS in Poultry Farm Management System v1.0 due to the lack of proper validation of user input by sending a POST request. The relationship between parameters and assigned identifiers is as follows: 'companyaddress', 'companyemail', 'companyname', 'country',...

5.4CVSS5.8AI score0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/01/20 12:15 p.m.3 views

CVE-2025-41024

Stored Cross-Site Scripting XSS in Poultry Farm Management System v1.0 due to the lack of proper validation of user input by sending a POST request. The relationship between parameters and assigned identifiers is as follows: 'companyaddress', 'companyemail', 'companyname', 'country',...

5.4CVSS0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/20 12:4 p.m.17 views

CVE-2025-41025 Stored Cross-Site Scripting in Poultry Farm Management System

Stored Cross-Site Scripting XSS in Poultry Farm Management System v1.0 due to the lack of proper validation of user input by sending a POST request. The relationship between parameters and assigned identifiers is as follows: 'category' y 'product' parameters in '/farm/sellproduct.php'...

5.1CVSS0.00133EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/20 11:53 a.m.19 views

CVE-2025-40679 HTML injection in Isshue from Bdtask

HTML Injection vulnerability in Isshue by Bdtask, consisting os an HTML injection due to a lack os proper validation of user input by sending a POST request to '/categoryproductsearch', affecting the 'productname' parameter...

5.1CVSS0.00262EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/20 11:35 a.m.4 views

CVE-2025-41024

Stored Cross-Site Scripting XSS in Poultry Farm Management System v1.0 due to the lack of proper validation of user input by sending a POST request. The relationship between parameters and assigned identifiers is as follows: 'companyaddress', 'companyemail', 'companyname', 'country',...

5.4CVSS5.3AI score0.00162EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/01/20 11:35 a.m.13 views

CVE-2025-41024

CVE-2025-41024 affects Poultry Farm Management System v1.0. Stored XSS arises from insufficient validation of POST input in /farm/farmprofile.php, specifically for parameters: companyaddress, companyemail, companyname, country, mobilenumber, and regno. Root cause: lack of proper input validation ...

5.4CVSS5.5AI score0.00162EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/20 11:24 a.m.6 views

CVE-2026-1150

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. Impacted is the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument command results in command injection. The attack can be launched remotely...

8.8CVSS6.4AI score0.0235EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/20 10:21 a.m.9 views

CVE-2026-1149

A vulnerability was identified in Totolink LR350 9.3.5u.6369B20220309. This issue affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument ip leads to command injection. The attack can be initiated remotely. The...

8.8CVSS6.4AI score0.02714EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.5 views

Poultry Farm Management System Cross-Site Scripting Vulnerability

Poultry Farm Management System is a fully functional poultry management system developed by Poultry Company. Version 1.0 of the Poultry Farm Management System contains a cross-site scripting vulnerability. This vulnerability arises from insufficient validation of user input for the category and...

5.4CVSS5.6AI score0.00133EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.4 views

PT-2026-3553

Name of the Vulnerable Software and Affected Versions Poultry Farm Management System version 1.0 Description A stored Cross-Site Scripting XSS issue exists due to insufficient validation of user-supplied data when a POST request is made. The issue is present in the '/farm/sell product.php'...

5.4CVSS5.4AI score0.00133EPSS
Exploits0References5
Rows per page
Query Builder