Lucene search
K

3874 matches found

RedhatCVE
RedhatCVE
added 2026/05/11 8:27 p.m.11 views

CVE-2026-8230

A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function syslogin1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command injection. The attack can be executed remotely. The exploit has been published and may be used. Th...

8.8CVSS6.4AI score0.04944EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/11 8:27 p.m.9 views

CVE-2026-8227

A weakness has been identified in Wavlink NU516U1 240425. This issue affects the function wzdapMesh of the file /cgi-bin/adm.cgi. This manipulation causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks. T...

8.8CVSS6.4AI score0.04944EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/11 8:27 p.m.12 views

CVE-2026-8229

A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument AuthMethod/EncrypType results in os command injection. Remote exploitation of the attack is possible. The exploit is...

8.8CVSS6.4AI score0.04944EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/11 8:27 p.m.9 views

CVE-2026-8190

A vulnerability was determined in Wavlink NU516U1 M16U1V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument pppusername/ppppasswd/rwanip/rwanmask/rwangateway is directly passed by the attacker/so we can control the...

8.8CVSS6.4AI score0.05344EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/11 8:27 p.m.10 views

CVE-2026-8188

A vulnerability has been found in Wavlink NU516U1 M16U1V240425. Affected is the function changewifipassword of the file /cgi-bin/adm.cgi. The manipulation of the argument wlchannel/wlPass/EncrypType leads to os command injection. It is possible to initiate the attack remotely. The exploit has bee...

8.8CVSS6.3AI score0.05454EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/11 8:27 p.m.13 views

CVE-2026-8189

A vulnerability was found in Wavlink NU516U1 M16U1V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlanbssid/selAutomode/selEncrypTyp results in os command injection. It is possible to launch the attack remotely. Th...

8.8CVSS6.3AI score0.04807EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/11 8:25 p.m.9 views

CVE-2026-42453

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, the extractArchive and compressFiles endpoints in file-manager.ts use double-quoted strings for shell command construction, unlike all other file manager operation...

8.7CVSS5.8AI score0.01207EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/11 6:31 a.m.10 views

EUVD-2026-29029

A vulnerability was identified in D-Link DNS-320 2.06B01. The impacted element is the function cgispeed/cgidhcpdlease/cgiddns/cgisetip/cgiupnpdel/cgidhcpd/cgiupnpadd/cgiupnpedit of the file /cgi-bin/networkmgr.cgi. The manipulation leads to os command injection. The attack is possible to be carri...

7.2CVSS5.6AI score0.04637EPSS
Exploits1References6
EUVD
EUVD
added 2026/05/11 6:31 a.m.12 views

EUVD-2026-29030

A security flaw has been discovered in D-Link DNS-320 2.06B01. This affects the function delete/rename/copy/move/chmod/chown of the file /cgi-bin/webfilemgr.cgi. The manipulation results in os command injection. The attack may be performed from remote. The exploit has been released to the public...

7.2CVSS5.5AI score0.05587EPSS
Exploits1References6
EUVD
EUVD
added 2026/05/11 6:31 a.m.7 views

EUVD-2026-29022

A security vulnerability has been detected in Tenda AC6 15.03.06.23. Affected by this issue is the function getlogfile of the file /goform/getLogFile of the component httpd. The manipulation of the argument wans.flag leads to os command injection. The attack can be initiated remotely. The exploit...

7.2CVSS5.6AI score0.04412EPSS
Exploits1References6
EUVD
EUVD
added 2026/05/11 6:31 a.m.12 views

EUVD-2026-29020

A weakness has been identified in Tenda AC6 15.03.06.23. Affected by this vulnerability is the function formWifiApScan of the file /goform/WifiApScan of the component httpd. Executing a manipulation of the argument wl2g.public.country/wl5g.public.country can lead to os command injection. It is...

8.8CVSS6.4AI score0.02891EPSS
Exploits1References6
NVD
NVD
added 2026/05/11 5:16 a.m.13 views

CVE-2026-8271

A vulnerability was identified in D-Link DNS-320 2.06B01. The impacted element is the function cgispeed/cgidhcpdlease/cgiddns/cgisetip/cgiupnpdel/cgidhcpd/cgiupnpadd/cgiupnpedit of the file /cgi-bin/networkmgr.cgi. The manipulation leads to os command injection. The attack is possible to be carri...

7.2CVSS0.04637EPSS
Exploits1References5
NVD
NVD
added 2026/05/11 5:16 a.m.59 views

CVE-2026-8273

A weakness has been identified in D-Link DNS-320 2.06B01. This impacts the function cgisethost/cgisetntp/cgifancontrol/cgimergeuser of the file /cgi-bin/systemmgr.cgi. This manipulation causes os command injection. It is possible to initiate the attack remotely...

7.2CVSS0.04544EPSS
Exploits1References5
CVE
CVE
added 2026/05/11 4:30 a.m.28 views

CVE-2026-8273

CVE-2026-8273 describes an os command injection in D-Link DNS-320 2.06B01 via /cgi-bin/system_mgr.cgi affecting the functions cgi_set_host, cgi_set_ntp, cgi_fan_control, and cgi_merge_user. Root cause: manipulation of CGI logic enabling remote command execution. Reported impact is remote, over ne...

7.2CVSS5.7AI score0.04544EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/11 4:30 a.m.8 views

CVE-2026-8273 D-Link DNS-320 system_mgr.cgi cgi_merge_user os command injection

A weakness has been identified in D-Link DNS-320 2.06B01. This impacts the function cgisethost/cgisetntp/cgifancontrol/cgimergeuser of the file /cgi-bin/systemmgr.cgi. This manipulation causes os command injection. It is possible to initiate the attack remotely...

5.8CVSS5.7AI score0.04544EPSS
Exploits1References5
NVD
NVD
added 2026/05/11 4:16 a.m.24 views

CVE-2026-8265

A security vulnerability has been detected in Tenda AC6 15.03.06.23. Affected by this issue is the function getlogfile of the file /goform/getLogFile of the component httpd. The manipulation of the argument wans.flag leads to os command injection. The attack can be initiated remotely. The exploit...

7.2CVSS0.04412EPSS
Exploits1References5
NVD
NVD
added 2026/05/11 4:16 a.m.17 views

CVE-2026-8264

A weakness has been identified in Tenda AC6 15.03.06.23. Affected by this vulnerability is the function formWifiApScan of the file /goform/WifiApScan of the component httpd. Executing a manipulation of the argument wl2g.public.country/wl5g.public.country can lead to os command injection. It is...

8.8CVSS0.02891EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/05/11 4:15 a.m.8 views

CVE-2026-8272

A security flaw has been discovered in D-Link DNS-320 2.06B01. This affects the function delete/rename/copy/move/chmod/chown of the file /cgi-bin/webfilemgr.cgi. The manipulation results in os command injection. The attack may be performed from remote. The exploit has been released to the public...

5.8CVSS5.6AI score0.05587EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/05/11 4:15 a.m.43 views

CVE-2026-8272 D-Link DNS-320 webfile_mgr.cgi chown os command injection

A security flaw has been discovered in D-Link DNS-320 2.06B01. This affects the function delete/rename/copy/move/chmod/chown of the file /cgi-bin/webfilemgr.cgi. The manipulation results in os command injection. The attack may be performed from remote. The exploit has been released to the public...

5.8CVSS0.05587EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/05/11 4:0 a.m.7 views

CVE-2026-8271 D-Link DNS-320 network_mgr.cgi cgi_upnp_edit os command injection

A vulnerability was identified in D-Link DNS-320 2.06B01. The impacted element is the function cgispeed/cgidhcpdlease/cgiddns/cgisetip/cgiupnpdel/cgidhcpd/cgiupnpadd/cgiupnpedit of the file /cgi-bin/networkmgr.cgi. The manipulation leads to os command injection. The attack is possible to be carri...

5.8CVSS5.6AI score0.04637EPSS
Exploits1References5
Rows per page
Query Builder