Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
๐Ÿ”ฅ Daily Hot!
๐Ÿ’ช๐Ÿฝ CPE Enhanced Advisories
๐Ÿ•ถ Shadow Exploits
๐Ÿ•ต๐Ÿผ Vulners CPE
๐Ÿ” Security news
๐Ÿ’ป Exploit updates
๐Ÿ“‘ Blogs review
๐Ÿง Linux vulnerabilities
๐Ÿž Bugbounty
๐Ÿค– AI High Score
๐Ÿ“ฐ CVE Feed
show all

19582 matches found

GithubExploit
GithubExploitโ€ขadded 2026/01/20 2:10 p.m.โ€ข248 views

Exploit for Code Injection in Laravel Livewire

CVE-2025-54068 A tool designed to exploit CVE-2025-54068 and...

9.8CVSS6.2AI score0.9203EPSS
Exploits5
RedhatCVE
RedhatCVEโ€ขadded 2026/01/20 11:24 a.m.โ€ข5 views

CVE-2026-1150

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. Impacted is the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument command results in command injection. The attack can be launched remotely...

8.8CVSS6.4AI score0.0235EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusโ€ขadded 2026/01/20 12:0 a.m.โ€ข6 views

MiracleLinux 9 : cups-2.3.3op2-31.el9 (AXSA:2024-9124:11)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9124:11 advisory. cups: libppd: remote command injection via attacker controlled data in PPD file Tenable has extracted the preceding description block directly from the...

9.8CVSS7.3AI score0.73062EPSS
Exploits5References2
Tenable Nessus
Tenable Nessusโ€ขadded 2026/01/20 12:0 a.m.โ€ข5 views

MiracleLinux 9 : cups-filters-1.28.7-17.el9_4 (AXSA:2024-8862:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8862:03 advisory. cups-browsed: cups-browsed binds on UDP INADDRANY:631 trusting any packet from any source cups-filters: libcupsfilters: cfGetPrinterAttributes API...

9.8CVSS7.5AI score0.8344EPSS
Exploits16References4
Tenable Nessus
Tenable Nessusโ€ขadded 2026/01/20 12:0 a.m.โ€ข6 views

MiracleLinux 9 : pcp-6.2.0-2.el9 (AXSA:2024-8062:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8062:02 advisory. pcp: exposure of the redis server backend allows remote command execution via pmproxy CVE-2024-3019 Tenable has extracted the preceding description...

8.8CVSS5.8AI score0.01002EPSS
Exploits0References3
Packet Storm
Packet Stormโ€ขadded 2026/01/20 12:0 a.m.โ€ข163 views

๐Ÿ“„ Siklu EtherHaul Series EH-8010 / EH-1200 Remote Command Execution

Siklu EtherHaul Series EH-8010 and EH-1200 with firmware versions between 7.4.0 and 10.7.3 suffer from a remote command execution vulnerability. Exploit Title:Siklu EtherHaul Series EH-8010 - Remote Command Execution Shodan Dork: "EH-8010" or "EH-1200" Date: 2025-08-02 Exploit Author: semaja2 -...

9.8CVSS8.6AI score0.01219EPSS
Exploits3
OSV
OSVโ€ขadded 2026/01/19 11:16 p.m.โ€ข2 views

CVE-2026-1192

A vulnerability was determined in Tosei Online Store Management System ใƒใƒƒใƒˆๅบ—่ˆ—็ฎก็†ใ‚ทใ‚นใƒ†ใƒ  1.01. The affected element is an unknown function of the file /cgi-bin/imodealldata.php. Executing a manipulation of the argument DevId can lead to command injection. The attack can be executed remotely. The exploi...

7.3CVSS5.7AI score0.06123EPSS
Exploits1References4
NVD
NVDโ€ขadded 2026/01/19 11:16 p.m.โ€ข4 views

CVE-2026-1192

A vulnerability was determined in Tosei Online Store Management System ใƒใƒƒใƒˆๅบ—่ˆ—็ฎก็†ใ‚ทใ‚นใƒ†ใƒ  1.01. The affected element is an unknown function of the file /cgi-bin/imodealldata.php. Executing a manipulation of the argument DevId can lead to command injection. The attack can be executed remotely. The exploi...

7.5CVSS0.06123EPSS
Exploits1References4
Vulnrichment
Vulnrichmentโ€ขadded 2026/01/19 11:2 p.m.โ€ข3 views

CVE-2026-1192 Tosei Online Store Management System ใƒใƒƒใƒˆๅบ—่ˆ—็ฎก็†ใ‚ทใ‚นใƒ†ใƒ  imode_alldata.php command injection

A vulnerability was determined in Tosei Online Store Management System ใƒใƒƒใƒˆๅบ—่ˆ—็ฎก็†ใ‚ทใ‚นใƒ†ใƒ  1.01. The affected element is an unknown function of the file /cgi-bin/imodealldata.php. Executing a manipulation of the argument DevId can lead to command injection. The attack can be executed remotely. The exploi...

7.5CVSS5.4AI score0.06123EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBโ€ขadded 2026/01/19 11:2 p.m.โ€ข2 views

CVE-2026-1192

A vulnerability was determined in Tosei Online Store Management System ใƒใƒƒใƒˆๅบ—่ˆ—็ฎก็†ใ‚ทใ‚นใƒ†ใƒ  1.01. The affected element is an unknown function of the file /cgi-bin/imodealldata.php. Executing a manipulation of the argument DevId can lead to command injection. The attack can be executed remotely. The exploi...

7.5CVSS5.3AI score0.06123EPSS
Exploits1References4Affected Software1
CVE
CVEโ€ขadded 2026/01/19 11:2 p.m.โ€ข11 views

CVE-2026-1192

CVE-2026-1192 affects Tosei Online Store Management System 1.01. The vulnerability is in an unknown function within /cgi-bin/imode_alldata.php where manipulating the DevId argument can cause remote command injection. Public exploit details exist; vendor was contacted but did not respond. Descript...

7.5CVSS5.4AI score0.06123EPSS
Exploits1References4Affected Software1
OSV
OSVโ€ขadded 2026/01/19 11:15 a.m.โ€ข2 views

CVE-2026-1150

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. Impacted is the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument command results in command injection. The attack can be launched remotely...

8.8CVSS5.7AI score0.0235EPSS
Exploits1References5
NVD
NVDโ€ขadded 2026/01/19 11:15 a.m.โ€ข5 views

CVE-2026-1150

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. Impacted is the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument command results in command injection. The attack can be launched remotely...

8.8CVSS0.0235EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBโ€ขadded 2026/01/19 10:32 a.m.โ€ข3 views

CVE-2026-1150

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. Impacted is the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument command results in command injection. The attack can be launched remotely...

8.8CVSS5.4AI score0.0235EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistโ€ขadded 2026/01/19 10:32 a.m.โ€ข23 views

CVE-2026-1150 Totolink LR350 POST Request cstecgi.cgi setTracerouteCfg command injection

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. Impacted is the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument command results in command injection. The attack can be launched remotely...

6.5CVSS0.0235EPSS
Exploits1References5
OSV
OSVโ€ขadded 2026/01/19 10:16 a.m.โ€ข5 views

CVE-2026-1149

A vulnerability was identified in Totolink LR350 9.3.5u.6369B20220309. This issue affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument ip leads to command injection. The attack can be initiated remotely. The...

8.8CVSS5.7AI score0.02714EPSS
Exploits1References5
NVD
NVDโ€ขadded 2026/01/19 10:16 a.m.โ€ข7 views

CVE-2026-1149

A vulnerability was identified in Totolink LR350 9.3.5u.6369B20220309. This issue affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument ip leads to command injection. The attack can be initiated remotely. The...

8.8CVSS0.02714EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBโ€ขadded 2026/01/19 10:2 a.m.โ€ข4 views

CVE-2026-1149

A vulnerability was identified in Totolink LR350 9.3.5u.6369B20220309. This issue affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument ip leads to command injection. The attack can be initiated remotely. The...

8.8CVSS5.3AI score0.02714EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentโ€ขadded 2026/01/19 10:2 a.m.โ€ข4 views

CVE-2026-1149 Totolink LR350 POST Request cstecgi.cgi setDiagnosisCfg command injection

A vulnerability was identified in Totolink LR350 9.3.5u.6369B20220309. This issue affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument ip leads to command injection. The attack can be initiated remotely. The...

6.5CVSS6.4AI score0.02714EPSS
Exploits1References5
CVE
CVEโ€ขadded 2026/01/19 10:2 a.m.โ€ข27 views

CVE-2026-1149

CVE-2026-1149 affects Totolink LR350; the flaw is in the POST Request Handlerโ€™s /cgi-bin/cstecgi.cgi, in the setDiagnosisCfg function. Crafted input to the ip argument enables remote command injection. Exploit is publicly available and could be used, per sources. Affected version: 9.3.5u.6369_B20...

8.8CVSS5.4AI score0.02714EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder