Lucene search
K

19649 matches found

CVE
CVE
added 2026/04/27 3:30 p.m.9 views

CVE-2026-7136

CVE-2026-7136 affects Totolink A8000RU, version 7.1cu.643_b20200521. Vulnerable component: CGI Handler, file /cgi-bin/cstecgi.cgi, function setDmzCfg. Manipulating the wanIdx argument can cause an OS command injection. Exploit can be launched remotely and public exploits exist. Documents consiste...

10CVSS8.2AI score0.01766EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/27 1:22 p.m.10 views

CVE-2026-6980

A vulnerability has been found in Divyanshu-hash GitPilot-MCP up to 9ed9f153ba4158a2ad230ee4871b25130da29ffd. This impacts the function repopath of the file main.py. Such manipulation of the argument command leads to command injection. The attack can be launched remotely. The exploit has been...

7.5CVSS7AI score0.01694EPSS
Exploits0References1
NVD
NVD
added 2026/04/27 1:16 p.m.5 views

CVE-2026-7123

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument setIptvCfg results in os command injection. The attack can be initiated remotely. The...

10CVSS0.01766EPSS
Exploits0References5
NVD
NVD
added 2026/04/27 1:16 p.m.7 views

CVE-2026-7124

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument addrPrefixLen can lead to os command injection. The attack ca...

10CVSS0.01766EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 12:45 p.m.5 views

CVE-2026-7125

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument merge leads to os command injection. The attack may be initiated remotely. T...

10CVSS8.3AI score0.01766EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/27 12:45 p.m.3 views

CVE-2026-7125 Totolink A8000RU CGI cstecgi.cgi setWiFiEasyCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument merge leads to os command injection. The attack may be initiated remotely. T...

10CVSS8.3AI score0.01766EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/27 12:45 p.m.34 views

CVE-2026-7125 Totolink A8000RU CGI cstecgi.cgi setWiFiEasyCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument merge leads to os command injection. The attack may be initiated remotely. T...

10CVSS0.01766EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 12:30 p.m.4 views

CVE-2026-7124

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument addrPrefixLen can lead to os command injection. The attack ca...

10CVSS8.2AI score0.01766EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/04/27 12:30 p.m.32 views

CVE-2026-7124 Totolink A8000RU CGI cstecgi.cgi setIpv6LanCfg os command injection

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument addrPrefixLen can lead to os command injection. The attack ca...

10CVSS0.01766EPSS
Exploits0References5
NVD
NVD
added 2026/04/27 12:16 p.m.6 views

CVE-2026-7122

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This impacts the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument enable leads to os command injection. It is possible to launch the attack remotely. The...

10CVSS0.01766EPSS
Exploits0References5
NVD
NVD
added 2026/04/27 12:16 p.m.5 views

CVE-2026-7119

A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used...

9CVSS0.03269EPSS
Exploits1References5
NVD
NVD
added 2026/04/27 12:16 p.m.6 views

CVE-2026-7121

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument wizard causes os command injection. It is possible to initiate the attack remotely. The exploit has...

10CVSS0.01947EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/27 12:15 p.m.5 views

EUVD-2026-25839

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument setIptvCfg results in os command injection. The attack can be initiated remotely. The...

10CVSS8.2AI score0.01766EPSS
Exploits0References5
CVE
CVE
added 2026/04/27 12:15 p.m.14 views

CVE-2026-7123

CVE-2026-7123 affects Totolink A8000RU (firmware 7.1cu.643_b20200521) CGI Handler, specifically the file /cgi-bin/cstecgi.cgi function setIptvCfg. The vulnerability is a remote OS command injection caused by manipulation of the setIptvCfg argument. Public exploits exist, enabling remote attackers...

10CVSS8.2AI score0.01766EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/27 11:45 a.m.3 views

CVE-2026-7121 Totolink A8000RU CGI cstecgi.cgi setWizardCfg os command injection

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument wizard causes os command injection. It is possible to initiate the attack remotely. The exploit has...

10CVSS8.2AI score0.01947EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/27 11:45 a.m.8 views

EUVD-2026-25835

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument wizard causes os command injection. It is possible to initiate the attack remotely. The exploit has...

10CVSS8.2AI score0.01947EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 11:45 a.m.3 views

CVE-2026-7121

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument wizard causes os command injection. It is possible to initiate the attack remotely. The exploit has...

10CVSS8.3AI score0.01947EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/27 11:45 a.m.7 views

CVE-2026-7121

Totolink A8000RU 7.1cu.643_b20200521 has a vulnerability in the CGI Handler, specifically the setWizardCfg function in /cgi-bin/cstecgi.cgi. The wizard parameter manipulation leads to os command injection, with remote exploit possibility and an exploit published. The CVE indicates a critical seve...

10CVSS8.2AI score0.01947EPSS
Exploits0References5
CVE
CVE
added 2026/04/27 11:30 a.m.10 views

CVE-2026-7119

CVE-2026-7119 affects: Tenda HG3 2.0. The vulnerability lies in an unknown function within the file /boaform/formCountrystr, where manipulating the argument countrystr leads to an OS command injection . This can be exploited remotely, and the exploit is publicly available. The connected sources s...

9CVSS7.8AI score0.03269EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/04/27 9:16 a.m.6 views

CVE-2026-7102

A vulnerability was found in Tenda F456 1.0.0.5. This impacts the function FromWriteFacMac of the file /goform/WriteFacMac of the component httpd. The manipulation of the argument mac results in command injection. The attack can be executed remotely. The exploit has been made public and could be...

8.8CVSS0.03024EPSS
Exploits1References5
Rows per page
Query Builder