Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18437 matches found

NVD
NVDadded 2026/05/09 7:16 p.m.4 views

CVE-2026-8192

A security flaw has been discovered in Wavlink NU516U1 M16U1V240425. This vulnerability affects the function wzdap of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument EncrypType/wlPass is directly passed by the attacker/so we can control the EncrypType/wlPass results in os...

8.8CVSS0.00351EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/05/09 6:30 p.m.3 views

CVE-2026-8192

A security flaw has been discovered in Wavlink NU516U1 M16U1V240425. This vulnerability affects the function wzdap of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument EncrypType/wlPass is directly passed by the attacker/so we can control the EncrypType/wlPass results in os...

6.5CVSS6.4AI score0.00351EPSS
Exploits1References4
NVD
NVDadded 2026/05/09 6:16 p.m.8 views

CVE-2026-8190

A vulnerability was determined in Wavlink NU516U1 M16U1V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument pppusername/ppppasswd/rwanip/rwanmask/rwangateway is directly passed by the attacker/so we can control the...

8.8CVSS0.00088EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/05/09 6:15 p.m.4 views

CVE-2026-8191

A vulnerability was identified in Wavlink NU516U1 M16U1V240425. This affects the function wifiregion of the file /cgi-bin/adm.cgi. Such manipulation of the argument skiplist1/skiplist2 leads to os command injection. The attack can be launched remotely. The exploit is publicly available and might ...

6.5CVSS6.5AI score0.00088EPSS
Exploits1References4
NVD
NVDadded 2026/05/09 5:16 p.m.6 views

CVE-2026-8189

A vulnerability was found in Wavlink NU516U1 M16U1V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlanbssid/selAutomode/selEncrypTyp results in os command injection. It is possible to launch the attack remotely. Th...

8.8CVSS0.00351EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/05/09 5:15 p.m.9 views

CVE-2026-8190

A vulnerability was determined in Wavlink NU516U1 M16U1V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument pppusername/ppppasswd/rwanip/rwanmask/rwangateway is directly passed by the attacker/so we can control the...

6.5CVSS6.4AI score0.00088EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/05/09 5:15 p.m.30 views

CVE-2026-8190 Wavlink NU516U1 adm.cgi wan os command injection

A vulnerability was determined in Wavlink NU516U1 M16U1V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument pppusername/ppppasswd/rwanip/rwanmask/rwangateway is directly passed by the attacker/so we can control the...

6.5CVSS0.00088EPSS
Exploits1References4
NVD
NVDadded 2026/05/09 4:16 p.m.8 views

CVE-2026-8188

A vulnerability has been found in Wavlink NU516U1 M16U1V240425. Affected is the function changewifipassword of the file /cgi-bin/adm.cgi. The manipulation of the argument wlchannel/wlPass/EncrypType leads to os command injection. It is possible to initiate the attack remotely. The exploit has bee...

8.8CVSS0.00088EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/05/09 4:15 p.m.33 views

CVE-2026-8189 Wavlink NU516U1 adm.cgi wzdrepeater os command injection

A vulnerability was found in Wavlink NU516U1 M16U1V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlanbssid/selAutomode/selEncrypTyp results in os command injection. It is possible to launch the attack remotely. Th...

6.5CVSS0.00351EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/05/09 4:15 p.m.4 views

CVE-2026-8189

A vulnerability was found in Wavlink NU516U1 M16U1V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlanbssid/selAutomode/selEncrypTyp results in os command injection. It is possible to launch the attack remotely. Th...

6.5CVSS6.3AI score0.00351EPSS
Exploits1References4
CVE
CVEadded 2026/05/09 3:15 p.m.11 views

CVE-2026-8188

The CVE-2026-8188 entries describe a vulnerability in Wavlink NU516U1 M16U1_V240425 where the change_wifi_password function in /cgi-bin/adm.cgi is exploitable via OS command injection. The issue stems from manipulating input parameters wl_channel, wl_Pass, or EncrypType, enabling remote execution...

8.8CVSS6.3AI score0.00088EPSS
Exploits1References4Affected Software1
EUVD
EUVDadded 2026/05/09 3:15 p.m.9 views

EUVD-2026-28915

A vulnerability has been found in Wavlink NU516U1 M16U1V240425. Affected is the function changewifipassword of the file /cgi-bin/adm.cgi. The manipulation of the argument wlchannel/wlPass/EncrypType leads to os command injection. It is possible to initiate the attack remotely. The exploit has bee...

6.5CVSS5.5AI score0.00088EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/05/09 3:15 p.m.6 views

CVE-2026-8188

A vulnerability has been found in Wavlink NU516U1 M16U1V240425. Affected is the function changewifipassword of the file /cgi-bin/adm.cgi. The manipulation of the argument wlchannel/wlPass/EncrypType leads to os command injection. It is possible to initiate the attack remotely. The exploit has bee...

6.5CVSS5.5AI score0.00088EPSS
Exploits1References4
NVD
NVDadded 2026/05/09 9:16 a.m.7 views

CVE-2026-3828

Some Hikvision switch products discontinued since December 2023 are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can exploit this flaw by sending crafted packets containing malicious commands to affected devices, leadi...

7.2CVSS0.00048EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/09 8:27 a.m.38 views

CVE-2026-3828

Some Hikvision switch products discontinued since December 2023 are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can exploit this flaw by sending crafted packets containing malicious commands to affected devices, leadi...

7.2CVSS0.00048EPSS
Exploits0References1
CVE
CVEadded 2026/05/09 8:27 a.m.17 views

CVE-2026-3828

The CVE affects some Hikvision switch products (discontinued since December 2023) and is caused by insufficient input validation enabling authenticated remote command execution. With valid credentials, an attacker can send crafted packets containing malicious commands to affected devices, resulti...

7.2CVSS6.1AI score0.00048EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/09 8:27 a.m.3 views

CVE-2026-3828

Some Hikvision switch products discontinued since December 2023 are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can exploit this flaw by sending crafted packets containing malicious commands to affected devices, leadi...

7.2CVSS6.1AI score0.00048EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/09 8:27 a.m.9 views

EUVD-2026-28908

Some Hikvision switch products discontinued since December 2023 are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can exploit this flaw by sending crafted packets containing malicious commands to affected devices, leadi...

7.2CVSS6.1AI score0.00048EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/05/09 12:0 a.m.7 views

Wavlink NU516U1 命令注入漏洞

Wavlink NU516U1 is a wireless print server developed by Wavlink Corporation. The Wavlink NU516U1 M16U1V240425 version has a command injection vulnerability. This vulnerability arises from the handling of parameters wlchannel/wlPass/EncrypType in the changewifipassword function located in the...

8.8CVSS6.7AI score0.00088EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2026/05/09 12:0 a.m.6 views

PT-2026-39336

A vulnerability has been found in Wavlink NU516U1 M16U1 V240425. Affected is the function change wifi password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl channel/wl Pass/EncrypType leads to os command injection. It is possible to initiate the attack remotely. The exploit ha...

6.5CVSS6.3AI score0.00088EPSS
Exploits1References5
Rows per page
Query Builder