Lucene search
K

3873 matches found

Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.8 views

PT-2026-35378

A vulnerability was found in Tenda F456 1.0.0.5. This impacts the function FromWriteFacMac of the file /goform/WriteFacMac of the component httpd. The manipulation of the argument mac results in command injection. The attack can be executed remotely. The exploit has been made public and could be...

6.5CVSS6.3AI score0.03024EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.10 views

PT-2026-35418

A vulnerability was determined in Totolink A8000RU 7.1cu.643 b20200521. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument addrPrefixLen can lead to os command injection. The attack c...

10CVSS8.2AI score0.01766EPSS
Exploits0References6
CVE
CVE
added 2026/04/26 11:30 p.m.20 views

CVE-2026-7067

CVE-2026-7067 refers to a command injection in D-Link DIR-822 A_101’s udhcpd DHCP Service (file /udhcpcd/dhcpd.c, function system). The vulnerability stems from manipulating the Hostname argument, enabling remote code execution. Exploitation is possible over the network, with a publicly disclosed...

7.5CVSS7.2AI score0.02476EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/04/26 11:16 p.m.8 views

CVE-2026-7062

A security vulnerability has been detected in Intina47 context-sync up to 2.0.0. This affects an unknown part of the file src/git-integration.ts of the component Git Integration. Such manipulation leads to os command injection. The attack can be executed remotely. The exploit has been disclosed...

7.5CVSS0.01368EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/04/26 11:15 p.m.5 views

CVE-2026-7066 choieastsea simple-openstack-mcp server.py exec_openstack os command injection

A vulnerability was found in choieastsea simple-openstack-mcp up to 767b2f4a8154cca344344b9725537a58399e6036. The affected element is the function execopenstack of the file server.py. The manipulation results in os command injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS7.1AI score0.01338EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/26 11:15 p.m.5 views

EUVD-2026-25736

A vulnerability was found in choieastsea simple-openstack-mcp up to 767b2f4a8154cca344344b9725537a58399e6036. The affected element is the function execopenstack of the file server.py. The manipulation results in os command injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS5.3AI score0.01338EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/26 11:15 p.m.4 views

CVE-2026-7066

A vulnerability was found in choieastsea simple-openstack-mcp up to 767b2f4a8154cca344344b9725537a58399e6036. The affected element is the function execopenstack of the file server.py. The manipulation results in os command injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS7.1AI score0.01338EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/26 11:15 p.m.34 views

CVE-2026-7066 choieastsea simple-openstack-mcp server.py exec_openstack os command injection

A vulnerability was found in choieastsea simple-openstack-mcp up to 767b2f4a8154cca344344b9725537a58399e6036. The affected element is the function execopenstack of the file server.py. The manipulation results in os command injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS0.01338EPSS
Exploits0References5
CVE
CVE
added 2026/04/26 11:15 p.m.23 views

CVE-2026-7066

Technical details are not publicly available in the provided documents. Monitor for updates.

7.5CVSS7.1AI score0.01338EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/26 10:45 p.m.31 views

CVE-2026-7064 AgentDeskAI browser-tools-mcp browser-connector.ts os command injection

A flaw has been found in AgentDeskAI browser-tools-mcp up to 1.2.0. This issue affects some unknown processing of the file browser-tools-server/browser-connector.ts. Executing a manipulation can lead to os command injection. The attack may be performed from remote. The exploit has been published...

7.5CVSS0.01707EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/26 10:45 p.m.3 views

CVE-2026-7064

A flaw has been found in AgentDeskAI browser-tools-mcp up to 1.2.0. This issue affects some unknown processing of the file browser-tools-server/browser-connector.ts. Executing a manipulation can lead to os command injection. The attack may be performed from remote. The exploit has been published...

7.5CVSS7AI score0.01707EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/26 10:45 p.m.11 views

CVE-2026-7064

CVE-2026-7064 affects AgentDeskAI browser-tools-mcp (up to version 1.2.0). The flaw involves a manipulation in the file browser-tools-server/browser-connector.ts that can enable os command injection. Reported as exploitable from remote, with an exploit published. Details in the connected document...

7.5CVSS7AI score0.01707EPSS
Exploits0References5
NVD
NVD
added 2026/04/26 10:17 p.m.6 views

CVE-2026-7061

A weakness has been identified in Toowiredd chatgpt-mcp-server up to 0.1.0. Affected by this issue is some unknown functionality of the file src/services/docker.service.ts of the component MCP/HTTP. This manipulation causes os command injection. Remote exploitation of the attack is possible. The...

7.5CVSS0.01353EPSS
Exploits0References6
NVD
NVD
added 2026/04/26 10:17 p.m.10 views

CVE-2026-7058

A vulnerability has been found in 666ghj MiroFish up to 0.1.2. The impacted element is the function SimulationIPCClient.sendcommand of the file backend/app/services/simulationipc.py of the component Inter-Process Communication. Such manipulation leads to command injection. It is possible to launc...

7.5CVSS0.01338EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/26 10:15 p.m.5 views

CVE-2026-7062

A security vulnerability has been detected in Intina47 context-sync up to 2.0.0. This affects an unknown part of the file src/git-integration.ts of the component Git Integration. Such manipulation leads to os command injection. The attack can be executed remotely. The exploit has been disclosed...

7.5CVSS5.1AI score0.01368EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/04/26 10:15 p.m.10 views

EUVD-2026-25732

A security vulnerability has been detected in Intina47 context-sync up to 2.0.0. This affects an unknown part of the file src/git-integration.ts of the component Git Integration. Such manipulation leads to os command injection. The attack can be executed remotely. The exploit has been disclosed...

7.5CVSS5.1AI score0.01368EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/04/26 10:15 p.m.4 views

CVE-2026-7062 Intina47 context-sync Git Integration git-integration.ts os command injection

A security vulnerability has been detected in Intina47 context-sync up to 2.0.0. This affects an unknown part of the file src/git-integration.ts of the component Git Integration. Such manipulation leads to os command injection. The attack can be executed remotely. The exploit has been disclosed...

7.5CVSS6.9AI score0.01368EPSS
Exploits0References6
CVE
CVE
added 2026/04/26 10:15 p.m.23 views

CVE-2026-7062

Technical details (affected products, components, patch info) are not publicly available in the provided documents. Monitor for updates.

7.5CVSS7AI score0.01368EPSS
Exploits0References6
NVD
NVD
added 2026/04/26 12:16 p.m.8 views

CVE-2026-7037

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setVpnPassCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument pptpPassThru results in os command injection. The attack can be executed...

10CVSS0.01785EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/26 11:45 a.m.35 views

CVE-2026-7037 Totolink A8000RU CGI cstecgi.cgi setVpnPassCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setVpnPassCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument pptpPassThru results in os command injection. The attack can be executed...

10CVSS0.01785EPSS
Exploits0References5
Rows per page
Query Builder