Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19512 matches found

Vulnrichment
Vulnrichmentadded 2026/05/24 10:30 p.m.6 views

CVE-2026-9402 Edimax BR-6675nD POST Request formWlanMP command injection

A vulnerability was found in Edimax BR-6675nD 1.12. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component POST Request Handler. The manipulation of the argument...

6.5CVSS6.4AI score0.01409EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/24 10:30 p.m.9 views

EUVD-2026-31602

A vulnerability was found in Edimax BR-6675nD 1.12. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component POST Request Handler. The manipulation of the argument...

6.5CVSS6.4AI score0.01409EPSS
Exploits0References4
CVE
CVEadded 2026/05/24 10:0 p.m.11 views

CVE-2026-9400

Edimax BR-6675nD (firmware 1.12) is affected by a command-injection in the POST Request Handler’s formUSBStorage function (/goform/formUSBStorage). By manipulating the sub_dir parameter, an attacker can execute arbitrary commands remotely. The CVE description consistently notes a remote attack po...

6.5CVSS6.4AI score0.01409EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/24 10:0 p.m.10 views

CVE-2026-9400 Edimax BR-6675nD POST Request formUSBStorage command injection

A flaw has been found in Edimax BR-6675nD 1.12. This issue affects the function formUSBStorage of the file /goform/formUSBStorage of the component POST Request Handler. Executing a manipulation of the argument subdir can lead to command injection. It is possible to launch the attack remotely. The...

6.5CVSS0.01409EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/05/24 10:0 p.m.7 views

CVE-2026-9400 Edimax BR-6675nD POST Request formUSBStorage command injection

A flaw has been found in Edimax BR-6675nD 1.12. This issue affects the function formUSBStorage of the file /goform/formUSBStorage of the component POST Request Handler. Executing a manipulation of the argument subdir can lead to command injection. It is possible to launch the attack remotely. The...

6.5CVSS6.4AI score0.01409EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/24 10:0 p.m.8 views

EUVD-2026-31603

A flaw has been found in Edimax BR-6675nD 1.12. This issue affects the function formUSBStorage of the file /goform/formUSBStorage of the component POST Request Handler. Executing a manipulation of the argument subdir can lead to command injection. It is possible to launch the attack remotely. The...

6.5CVSS6.4AI score0.01409EPSS
Exploits0References4
NVD
NVDadded 2026/05/24 3:16 p.m.9 views

CVE-2026-9388

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setScheduleCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument mode can lead to os command injection. It is possible to...

10CVSS0.01254EPSS
Exploits0References5
NVD
NVDadded 2026/05/24 3:16 p.m.10 views

CVE-2026-9387

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument resetFlags results in os command injection. It is...

10CVSS0.01254EPSS
Exploits0References5
CVE
CVEadded 2026/05/24 2:30 p.m.11 views

CVE-2026-9388

Totolink A8000RU Web Management (CVE-2026-9388) affects the /cgi-bin/cstecgi.cgi setScheduleCfg function. The vulnerability arises from manipulating the mode argument, enabling os command injection with remote access. Impact is high for confidentiality, integrity, and availability per CVSS metric...

10CVSS7.1AI score0.01254EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/24 2:30 p.m.8 views

CVE-2026-9388

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setScheduleCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument mode can lead to os command injection. It is possible to...

10CVSS7.1AI score0.01254EPSS
Exploits0References5Affected Software1
NVD
NVDadded 2026/05/24 2:16 p.m.7 views

CVE-2026-9385

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument command causes os command injection. The attack is possible to be...

10CVSS0.01254EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/24 2:15 p.m.7 views

CVE-2026-9387

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument resetFlags results in os command injection. It is...

10CVSS7AI score0.01254EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/24 2:15 p.m.6 views

CVE-2026-9387 Totolink A8000RU Web Management cstecgi.cgi setUpgradeFW os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument resetFlags results in os command injection. It is...

10CVSS7AI score0.01254EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/24 1:45 p.m.4 views

CVE-2026-9385

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument command causes os command injection. The attack is possible to be...

10CVSS7AI score0.01254EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2026/05/24 1:45 p.m.7 views

EUVD-2026-31597

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument command causes os command injection. The attack is possible to be...

10CVSS7AI score0.01254EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/24 1:30 p.m.8 views

CVE-2026-9384

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument ip results in os command injection. The attack can be executed...

10CVSS7AI score0.01254EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2026/05/24 11:45 a.m.7 views

EUVD-2026-31593

A weakness has been identified in Edimax BR-6675nD 1.12. This impacts the function formWpsStart of the file /goform/formWpsStart of the component POST Request Handler. This manipulation of the argument pinCode causes command injection. The attack can be initiated remotely. The exploit has been ma...

6.5CVSS6.4AI score0.01433EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/05/24 11:45 a.m.6 views

CVE-2026-9379 Edimax BR-6675nD POST Request formWpsStart command injection

A weakness has been identified in Edimax BR-6675nD 1.12. This impacts the function formWpsStart of the file /goform/formWpsStart of the component POST Request Handler. This manipulation of the argument pinCode causes command injection. The attack can be initiated remotely. The exploit has been ma...

6.5CVSS6.4AI score0.01433EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/24 11:45 a.m.5 views

CVE-2026-9379

A weakness has been identified in Edimax BR-6675nD 1.12. This impacts the function formWpsStart of the file /goform/formWpsStart of the component POST Request Handler. This manipulation of the argument pinCode causes command injection. The attack can be initiated remotely. The exploit has been ma...

6.5CVSS6.4AI score0.01433EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2026/05/24 11:15 a.m.13 views

CVE-2026-9378

Edimax BR-6675nD (firmware 1.12) is affected by CVE-2026-9378 due to a vulnerability in the POST Request Handler, specifically in formHwSet (/goform/formHwSet). The issue allows manipulation of arguments regDomain, ABandregDomain, nic0Addr, nic1Addr, wlanAddr, inicAddr to trigger command injectio...

6.5CVSS6.4AI score0.01409EPSS
Exploits0References4
Rows per page
Query Builder