CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/02/08 9:32 p.m.•26 views

CVE-2026-2188 UTT 进取 521G formPdbUpConfig sub_446B18 os command injection

8.6CVSS0.06413EPSS

Vulnrichment•added 2026/02/08 9:32 p.m.•4 views

CVE-2026-2188 UTT 进取 521G formPdbUpConfig sub_446B18 os command injection

8.6CVSS5.4AI score0.06413EPSS

CVE•added 2026/02/08 9:32 p.m.•10 views

CVE-2026-2188

CVE-2026-2188 affects UTT 进取 521G release 3.1.1-190816. The vulnerable component is the function sub_446B18 in the file /goform/formPdbUpConfig. An input manipulation of the argument policyNames can cause an OS command injection, with remote exploit viability. Public disclosures of the exploit ex...

8.6CVSS7AI score0.06413EPSS

Exploits1References4Affected Software1

NVD•added 2026/02/08 9:15 p.m.•10 views

CVE-2026-2184

A vulnerability was detected in Great Developers Certificate Generation System up to 97171bb0e5e22e52eacf4e4fa81773e5f3cffb73. This vulnerability affects unknown code of the file /restructured/csv.php. The manipulation of the argument photo results in os command injection. The attack can be...

9.8CVSS0.09902EPSS

ATTACKERKB•added 2026/02/08 8:32 p.m.•3 views

CVE-2026-2184

7.5CVSS7.2AI score0.09902EPSS

EUVD•added 2026/02/08 8:32 p.m.•1 views

EUVD-2026-5766

7.5CVSS5.3AI score0.09902EPSS

CVE•added 2026/02/08 8:32 p.m.•10 views

CVE-2026-2184

CVE-2026-2184 affects the Great Developers Certificate Generation System. The vulnerability is located in unknown code within the "/restructured/csv.php" file, where the manipulation of the photo argument leads to an OS command injection. It can be exploited remotely, and multiple sources corrobo...

9.8CVSS7.2AI score0.09902EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2026/02/08 8:2 p.m.•4 views

CVE-2026-2182 UTT 进取 521G setSysAdm doSystem command injection

A weakness has been identified in UTT 进取 521G 3.1.1-190816. Affected by this issue is the function doSystem of the file /goform/setSysAdm. Executing a manipulation of the argument passwd1 can lead to command injection. The attack may be launched remotely. The exploit has been made available to th...

8.6CVSS5.5AI score0.04239EPSS

CVE•added 2026/02/08 8:2 p.m.•16 views

CVE-2026-2182

UTT 进取 521G 3.1.1-190816 is affected by a vulnerability in the doSystem function of /goform/setSysAdm. Manipulating the passwd1 argument can trigger a command injection, potentially allowing remote code execution. Reported publicly; attack vector is NETWORK with LOW attack complexity and HIGH pri...

8.6CVSS7AI score0.04239EPSS

Exploits1References5Affected Software1

OSV•added 2026/02/08 7:16 p.m.•3 views

CVE-2026-2178

A vulnerability was found in r-huijts xcode-mcp-server up to f3419f00117aa9949e326f78cc940166c88f18cb. This affects the function registerXcodeTools of the file src/tools/xcode/index.ts of the component runlldb. The manipulation of the argument args results in command injection. It is possible to...

8.8CVSS5.2AI score0.02953EPSS

NVD•added 2026/02/08 7:16 p.m.•11 views

CVE-2026-2178

8.8CVSS0.02953EPSS

ATTACKERKB•added 2026/02/08 7:2 p.m.•7 views

CVE-2026-2178

6.5CVSS6.1AI score0.02953EPSS

EUVD•added 2026/02/08 7:2 p.m.•4 views

EUVD-2026-5772

6.5CVSS5.1AI score0.02953EPSS

EUVD•added 2026/02/08 6:32 p.m.•6 views

EUVD-2026-5775

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420618 of the file /goform/setupnp. This manipulation of the argument upnpenable causes os command injection. Remote exploitation of the attack is possible. The exploit has been made available to...

8.6CVSS5.3AI score0.0377EPSS

ATTACKERKB•added 2026/02/08 6:32 p.m.•5 views

CVE-2026-2175

8.6CVSS6.9AI score0.0377EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/02/08 6:32 p.m.•6 views

CVE-2026-2175 D-Link DIR-823X set_upnp sub_420618 os command injection

8.6CVSS5.4AI score0.0377EPSS