Lucene search
K

41189 matches found

EUVD
EUVD
added 2026/04/27 4:30 p.m.6 views

EUVD-2026-25879

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function CsteSystem of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument HTTP leads to os command injection. The attack may be performed from remote. The exploit has...

10CVSS8AI score0.01766EPSS
Exploits0References5
CVE
CVE
added 2026/04/27 4:30 p.m.10 views

CVE-2026-7140

The CVE-2026-7140 entry concerns Totolink A8000RU (firmware 7.1cu.643_b20200521). The vulnerability resides in CsteSystem within /cgi-bin/cstecgi.cgi of the CGI Handler, enabling an os command injection via manipulation of an HTTP argument. Impact vectors indicate remote exploitation with high co...

10CVSS8.1AI score0.01766EPSS
Exploits0References5
NVD
NVD
added 2026/04/27 4:16 p.m.3 views

CVE-2026-7134

A vulnerability was identified in code-projects Online Lot Reservation System 1.0. Affected is an unknown function of the file /edithousepic.php. Such manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit is publicly available and might ...

5.8CVSS0.00218EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/27 4:15 p.m.33 views

CVE-2026-7139 Totolink A8000RU CGI cstecgi.cgi setWiFiAclRules os command injection

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument mode causes os command injection. The attack is possible to be carried out remotely. The...

10CVSS0.01766EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/27 4:15 p.m.4 views

CVE-2026-7139 Totolink A8000RU CGI cstecgi.cgi setWiFiAclRules os command injection

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument mode causes os command injection. The attack is possible to be carried out remotely. The...

10CVSS8.1AI score0.01766EPSS
Exploits0References5
CVE
CVE
added 2026/04/27 4:15 p.m.7 views

CVE-2026-7139

The CVE concerns Totolink A8000RU (firmware 7.1cu.643_b20200521). The flaw is in the CGI handler function setWiFiAclRules within /cgi-bin/cstecgi.cgi, where argument mode manipulation enables remote OS command injection. The exploit is published and can be used remotely without authentication; im...

10CVSS8.2AI score0.01766EPSS
Exploits0References5
CVE
CVE
added 2026/04/27 4:0 p.m.16 views

CVE-2026-7138

Totolink A8000RU vulnerability CVE-2026-7138 affects the CGI Handler: file /cgi-bin/cstecgi.cgi, function setNtpCfg. Manipulating the tz argument leads to OS command injection with a remote attack path. Public exploit is indicated in the sources. No specific patch/version details or mitigations a...

10CVSS8.3AI score0.01766EPSS
Exploits0References5
NVD
NVD
added 2026/04/27 3:16 p.m.3 views

CVE-2026-7133

A vulnerability was determined in code-projects Online Lot Reservation System 1.0. This impacts an unknown function of the file /activity.php. This manipulation of the argument directory causes unrestricted upload. The attack can be initiated remotely. The exploit has been publicly disclosed and...

5.8CVSS0.00218EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/27 3:0 p.m.6 views

CVE-2026-7134 code-projects Online Lot Reservation System edithousepic.php unrestricted upload

A vulnerability was identified in code-projects Online Lot Reservation System 1.0. Affected is an unknown function of the file /edithousepic.php. Such manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit is publicly available and might ...

5.8CVSS5.2AI score0.00218EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/27 3:0 p.m.5 views

EUVD-2026-25872

A vulnerability was identified in code-projects Online Lot Reservation System 1.0. Affected is an unknown function of the file /edithousepic.php. Such manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit is publicly available and might ...

5.8CVSS5AI score0.00218EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/27 3:0 p.m.30 views

CVE-2026-7134 code-projects Online Lot Reservation System edithousepic.php unrestricted upload

A vulnerability was identified in code-projects Online Lot Reservation System 1.0. Affected is an unknown function of the file /edithousepic.php. Such manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit is publicly available and might ...

5.8CVSS0.00218EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 3:0 p.m.3 views

CVE-2026-7134

A vulnerability was identified in code-projects Online Lot Reservation System 1.0. Affected is an unknown function of the file /edithousepic.php. Such manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit is publicly available and might ...

5.8CVSS5.2AI score0.00218EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/04/27 2:45 p.m.6 views

EUVD-2026-25861

A vulnerability was determined in code-projects Online Lot Reservation System 1.0. This impacts an unknown function of the file /activity.php. This manipulation of the argument directory causes unrestricted upload. The attack can be initiated remotely. The exploit has been publicly disclosed and...

5.8CVSS5AI score0.00218EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 2:45 p.m.3 views

CVE-2026-7133

A vulnerability was determined in code-projects Online Lot Reservation System 1.0. This impacts an unknown function of the file /activity.php. This manipulation of the argument directory causes unrestricted upload. The attack can be initiated remotely. The exploit has been publicly disclosed and...

5.8CVSS5.2AI score0.00218EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/27 2:45 p.m.11 views

CVE-2026-7133

The CVE-2026-7133 entry affects code-projects Online Lot Reservation System 1.0, specifically a vulnerability in /activity.php where manipulating the directory argument enables unrestricted upload. This can be triggered remotely and has publicly disclosed exploit details. The connected documents ...

5.8CVSS5.1AI score0.00218EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/27 2:45 p.m.2 views

CVE-2026-7133 code-projects Online Lot Reservation System activity.php unrestricted upload

A vulnerability was determined in code-projects Online Lot Reservation System 1.0. This impacts an unknown function of the file /activity.php. This manipulation of the argument directory causes unrestricted upload. The attack can be initiated remotely. The exploit has been publicly disclosed and...

5.8CVSS4.9AI score0.00218EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/27 2:30 p.m.3 views

CVE-2026-7132 code-projects Online Lot Reservation System download.php readfile path traversal

A vulnerability was found in code-projects Online Lot Reservation System up to 1.0. This affects the function readfile of the file /download.php. The manipulation of the argument File results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and cou...

6.9CVSS5.6AI score0.0044EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/27 2:30 p.m.4 views

EUVD-2026-25860

A vulnerability was found in code-projects Online Lot Reservation System up to 1.0. This affects the function readfile of the file /download.php. The manipulation of the argument File results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and cou...

6.9CVSS5.6AI score0.0044EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/27 2:30 p.m.25 views

CVE-2026-7132 code-projects Online Lot Reservation System download.php readfile path traversal

A vulnerability was found in code-projects Online Lot Reservation System up to 1.0. This affects the function readfile of the file /download.php. The manipulation of the argument File results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and cou...

6.9CVSS0.0044EPSS
Exploits0References5
NVD
NVD
added 2026/04/27 2:16 p.m.5 views

CVE-2026-7130

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. The affected element is an unknown function of the file /ajax.php?action=deletecategory. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has...

7.5CVSS0.00254EPSS
Exploits0References5
Rows per page
Query Builder