Lucene search
K

3873 matches found

GithubExploit
GithubExploit
added 2026/04/28 10:2 p.m.113 views

Exploit for Command Injection in Github Enterprise_Server

ExploitCVE-2026-3854 CVE-2026-3854 is a Remote Code Executio...

8.8CVSS6AI score0.24462EPSS
Exploits5
Cvelist
Cvelist
added 2026/04/28 8:15 p.m.32 views

CVE-2026-7316 eiliyaabedini aider-mcp code_with_ai aider_mcp.py command injection

A vulnerability has been found in eiliyaabedini aider-mcp up to 667b914301aada695aab0e46d1fb3a7d5e32c8af. Affected is an unknown function of the file aidermcp.py of the component codewithai. The manipulation of the argument workingdir/editablefiles leads to command injection. The attack may be...

7.5CVSS0.01334EPSS
Exploits0References5
CVE
CVE
added 2026/04/28 8:15 p.m.10 views

CVE-2026-7316

CVE-2026-7316 affects the eiliyaabedini aider-mcp project (up to commit 667b914301aada695aab0e46d1fb3a7d5e32c8af), specifically the code_with_ai component and the aider_mcp.py file. The vulnerability arises from manipulation of the working_dir/editable_files argument, enabling a command injection...

7.5CVSS7AI score0.01334EPSS
Exploits0References5
NVD
NVD
added 2026/04/28 9:16 a.m.5 views

CVE-2026-7241

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wifiOff results in os command injection. The attack is possible to be carried...

10CVSS0.02448EPSS
Exploits0References5
NVD
NVD
added 2026/04/28 9:16 a.m.5 views

CVE-2026-7243

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument maxRtrAdvInterval leads to os command injection. It is possible to initiate the...

10CVSS0.02448EPSS
Exploits0References5
NVD
NVD
added 2026/04/28 8:16 a.m.7 views

CVE-2026-7240

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setVpnAccountCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument User leads to os command injection. The attack can be executed remotely...

10CVSS0.02426EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/28 8:15 a.m.4 views

CVE-2026-7244

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument merge results in os command injection. It is possible to launch the...

10CVSS5.3AI score0.02421EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/04/28 8:15 a.m.5 views

EUVD-2026-26017

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument merge results in os command injection. It is possible to launch the...

10CVSS5.2AI score0.02421EPSS
Exploits0References5
CVE
CVE
added 2026/04/28 8:15 a.m.13 views

CVE-2026-7244

The CVE concerns Totolink A8000RU (firmware 7.1cu.643_b20200521). Affects CGI Handler: function setWiFiEasyGuestCfg in /cgi-bin/cstecgi.cgi. The vulnerability arises from improper handling of the merge argument, enabling os command injection. Remote exploitation is possible, and public exploits e...

10CVSS8.3AI score0.02421EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/28 8:0 a.m.5 views

EUVD-2026-26016

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument maxRtrAdvInterval leads to os command injection. It is possible to initiate the...

10CVSS5.3AI score0.02448EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/28 8:0 a.m.5 views

CVE-2026-7243 Totolink A8000RU CGI cstecgi.cgi setRadvdCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument maxRtrAdvInterval leads to os command injection. It is possible to initiate the...

10CVSS8.4AI score0.02448EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/28 8:0 a.m.3 views

CVE-2026-7243

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument maxRtrAdvInterval leads to os command injection. It is possible to initiate the...

10CVSS5.3AI score0.02448EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/28 8:0 a.m.16 views

CVE-2026-7243

Totolink A8000RU (firmware 7.1cu.643_b20200521) CGI Handler /cgi-bin/cstecgi.cgi: vulnerable function setRadvdCfg. Attackers can remotely inject OS commands by manipulating the maxRtrAdvInterval argument. Publicly available exploit referenced; no mitigation details provided in the documents. Reme...

10CVSS8.4AI score0.02448EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/28 7:45 a.m.36 views

CVE-2026-7242 Totolink A8000RU CGI cstecgi.cgi setOpenVpnClientCfg os command injection

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnClientCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument enabled can lead to os command injection. The attack may be performed from...

10CVSS0.02452EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/28 7:45 a.m.4 views

EUVD-2026-26015

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnClientCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument enabled can lead to os command injection. The attack may be performed from...

10CVSS5.1AI score0.02452EPSS
Exploits0References5
CVE
CVE
added 2026/04/28 7:45 a.m.9 views

CVE-2026-7242

The vulnerability CVE-2026-7242 affects Totolink A8000RU (7.1cu.643_b20200521) in the CGI Handler’s function setOpenVpnClientCfg (file /cgi-bin/cstecgi.cgi). The issue allows remote manipulation of an argument to trigger an OS command injection. Impact is described as high confidentiality, integr...

10CVSS8.2AI score0.02452EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/28 7:30 a.m.5 views

CVE-2026-7241

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wifiOff results in os command injection. The attack is possible to be carried...

10CVSS5.2AI score0.02448EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/04/28 7:30 a.m.8 views

EUVD-2026-26014

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wifiOff results in os command injection. The attack is possible to be carried...

10CVSS5.2AI score0.02448EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/28 7:15 a.m.28 views

CVE-2026-7240 Totolink A8000RU CGI cstecgi.cgi setVpnAccountCfg os command injection

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setVpnAccountCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument User leads to os command injection. The attack can be executed remotely...

10CVSS0.02426EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/28 7:15 a.m.7 views

EUVD-2026-26010

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setVpnAccountCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument User leads to os command injection. The attack can be executed remotely...

10CVSS8.1AI score0.02426EPSS
Exploits0References5
Rows per page
Query Builder