Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19575 matches found

RedhatCVE
RedhatCVEadded 2026/04/07 11:1 p.m.6 views

CVE-2026-5690

A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed remotely. The exploit has been published...

7.5CVSS6.8AI score0.01459EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/07 11:1 p.m.4 views

CVE-2026-5689

A vulnerability was detected in Totolink A7100RU 7.4cu.2313b20191024. The affected element is the function setNtpCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument tz results in os command injection. Remote exploitation of the attack is possible. The exploit is now...

7.5CVSS6.9AI score0.01459EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/07 11:1 p.m.2 views

CVE-2026-5677

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. Impacted is the function CsteSystem of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument resetFlags results in os command injection. The attack may be initiated remotely. The exploit has been...

7.5CVSS6.8AI score0.0114EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/07 11:1 p.m.4 views

CVE-2026-5709

Unsanitized input in the FileBrowser API in AWS Research and Engineering Studio RES version 2024.10 through 2025.12.01 might allow a remote authenticated actor to execute arbitrary commands on the cluster-manager EC2 instance via crafted input when using the FileBrowser functionality. To remediat...

8.8CVSS6.2AI score0.01087EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/04/07 11:1 p.m.3 views

CVE-2026-5707

Unsanitized input in an OS command in the virtual desktop session name handling in AWS Research and Engineering Studio RES version 2025.03 through 2025.12.01 might allow a remote authenticated actor to execute arbitrary commands as root on the virtual desktop host via a crafted session name. To...

8.8CVSS6.2AI score0.00994EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/04/07 8:0 p.m.23 views

CVE-2026-5741 suvarchal docker-mcp-server HTTP index.ts pull_image os command injection

A weakness has been identified in suvarchal docker-mcp-server up to 0.1.0. The impacted element is the function stopcontainer/removecontainer/pullimage of the file src/index.ts of the component HTTP Interface. This manipulation causes os command injection. The attack is possible to be carried out...

7.5CVSS0.01338EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/07 8:0 p.m.2 views

CVE-2026-5741

A weakness has been identified in suvarchal docker-mcp-server up to 0.1.0. The impacted element is the function stopcontainer/removecontainer/pullimage of the file src/index.ts of the component HTTP Interface. This manipulation causes os command injection. The attack is possible to be carried out...

7.5CVSS6.8AI score0.01338EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2026/04/07 8:0 p.m.5 views

CVE-2026-5741

CVE-2026-5741 affects suvarchal/docker-mcp-server up to version 0.1.0. The vulnerability is in src/index.ts functions stop_container, remove_container, and pull_image of the HTTP Interface component, enabling remote command injection. Public exploit exists and could be used for attacks; project h...

7.5CVSS6.8AI score0.01338EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/04/07 5:12 a.m.1 views

CVE-2026-31059

A remote command execution RCE vulnerability in the /goform/formDia component of UTT Aggressive HiPER 520W v3v1.7.7-180627 allows attackers to execute arbitrary commands via a crafted string...

9.8CVSS6.3AI score0.00901EPSS
Exploits1References1
EUVD
EUVDadded 2026/04/07 12:30 a.m.4 views

EUVD-2026-19550

Unsanitized input in the FileBrowser API in AWS Research and Engineering Studio RES version 2024.10 through 2025.12.01 might allow a remote authenticated actor to execute arbitrary commands on the cluster-manager EC2 instance via crafted input when using the FileBrowser functionality. To remediat...

8.8CVSS6.2AI score0.01087EPSS
Exploits1References4
NVD
NVDadded 2026/04/06 11:16 p.m.3 views

CVE-2026-5691

A vulnerability has been found in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setFirewallType of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument firewallType leads to os command injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS0.01167EPSS
Exploits0References5
NVD
NVDadded 2026/04/06 11:16 p.m.5 views

CVE-2026-5690

A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed remotely. The exploit has been published...

7.5CVSS0.01459EPSS
Exploits0References5
NVD
NVDadded 2026/04/06 11:16 p.m.1 views

CVE-2026-5688

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313b20191024. Impacted is the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument provider leads to os command injection. The attack may be launched remotely. The exploit has been disclosed...

7.5CVSS0.01409EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 11:0 p.m.2 views

CVE-2026-5691

A vulnerability has been found in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setFirewallType of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument firewallType leads to os command injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS6.7AI score0.01167EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2026/04/06 11:0 p.m.19 views

CVE-2026-5691 Totolink A7100RU cstecgi.cgi setFirewallType os command injection

A vulnerability has been found in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setFirewallType of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument firewallType leads to os command injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS0.01167EPSS
Exploits0References5
CVE
CVEadded 2026/04/06 11:0 p.m.8 views

CVE-2026-5691

Totolink A7100RU firmware 7.4cu.2313_b20191024 is affected by a vulnerability in the /cgi-bin/cstecgi.cgi function setFirewallType. Manipulating the firewallType argument enables remote OS command injection. The issue is exploitable over the network with no privileges required and no user interac...

7.5CVSS6.7AI score0.01167EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/04/06 10:59 p.m.3 views

CVE-2026-4272

Missing Authentication for Critical Function vulnerability in Honeywell Handheld Scanners allows Authentication Abuse.This issue affects Handheld Scanners: from C1 BaseIngenic x1000 before GK000432BAA, from D1 BaseIngenic x1600 before HE000085BAA, from A1/B1 BaseIMX25 before...

8.1CVSS6AI score0.00453EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/06 10:45 p.m.21 views

CVE-2026-5690 Totolink A7100RU cstecgi.cgi setRemoteCfg os command injection

A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed remotely. The exploit has been published...

7.5CVSS0.01459EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 10:45 p.m.3 views

CVE-2026-5690

A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed remotely. The exploit has been published...

7.5CVSS6.8AI score0.01459EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/06 10:45 p.m.4 views

CVE-2026-5690 Totolink A7100RU cstecgi.cgi setRemoteCfg os command injection

A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed remotely. The exploit has been published...

7.5CVSS5.7AI score0.01459EPSS
Exploits0References5
Rows per page
Query Builder