Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1601 matches found

NVD
NVDadded 2024/01/26 9:15 a.m.7 views

CVE-2024-0920

A vulnerability was found in TRENDnet TEW-822DRE 1.03B02. It has been declared as critical. This vulnerability affects unknown code of the file /adminping.htm of the component POST Request Handler. The manipulation of the argument ipv4ping/ipv6ping leads to command injection. The attack can be...

8.3CVSS7.5AI score0.08648EPSS
Exploits1References3
OSV
OSVadded 2024/01/26 9:15 a.m.1 views

CVE-2024-0918

A vulnerability was found in TRENDnet TEW-800MB 1.0.1.0 and classified as critical. Affected by this issue is some unknown functionality of the component POST Request Handler. The manipulation of the argument DeviceURL leads to os command injection. The attack may be launched remotely. The exploi...

7.2CVSS5.6AI score0.25438EPSS
Exploits1References3
Prion
Prionadded 2024/01/26 9:15 a.m.13 views

Command injection

A vulnerability was found in TRENDnet TEW-822DRE 1.03B02. It has been declared as critical. This vulnerability affects unknown code of the file /adminping.htm of the component POST Request Handler. The manipulation of the argument ipv4ping/ipv6ping leads to command injection. The attack can be...

8.3CVSS7.8AI score0.08648EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2024/01/26 9:15 a.m.13 views

Command injection

A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical. This affects the function dosetNTP of the component POST Request Handler. The manipulation of the argument NtpDstStart/NtpDstEnd leads to command injection. It is possible to initiate the attack remotely...

9CVSS7.7AI score0.22549EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/26 8:8 a.m.3 views

CVE-2024-0920 TRENDnet TEW-822DRE POST Request admin_ping.htm command injection

A vulnerability was found in TRENDnet TEW-822DRE 1.03B02. It has been declared as critical. This vulnerability affects unknown code of the file /adminping.htm of the component POST Request Handler. The manipulation of the argument ipv4ping/ipv6ping leads to command injection. The attack can be...

8.3CVSS7.5AI score0.08648EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2024/01/26 8:8 a.m.13 views

CVE-2024-0919 TRENDnet TEW-815DAP POST Request do_setNTP command injection

A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical. This affects the function dosetNTP of the component POST Request Handler. The manipulation of the argument NtpDstStart/NtpDstEnd leads to command injection. It is possible to initiate the attack remotely...

9CVSS7.6AI score0.22549EPSS
Exploits1References3
CVE
CVEadded 2024/01/26 8:8 a.m.45 views

CVE-2024-0919

CVE-2024-0919 affects TRENDnet TEW-815DAP v1.0.2.0. The vulnerability resides in the POST Request Handler’s do_setNTP function; manipulation of the NtpDstStart/NtpDstEnd parameters enables remote command injection. Public exploit exists. Impact is described as critical. Interim mitigations from P...

9CVSS7.4AI score0.22549EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2024/01/26 8:8 a.m.18 views

CVE-2024-0918 TRENDnet TEW-800MB POST Request os command injection

A vulnerability was found in TRENDnet TEW-800MB 1.0.1.0 and classified as critical. Affected by this issue is some unknown functionality of the component POST Request Handler. The manipulation of the argument DeviceURL leads to os command injection. The attack may be launched remotely. The exploi...

8.3CVSS7.6AI score0.25438EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2024/01/26 12:0 a.m.3 views

PT-2024-1397 · Trendnet · Trendnet Tew-822Dre

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-822DRE version 1.03B02 Description: A critical issue affects the file /admin ping.htm of the component POST Request Handler. The manipulation of the ipv4 ping/ipv6 ping argument leads to command injection. This can be initiated...

8.3CVSS7.6AI score0.08648EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2024/01/26 12:0 a.m.3 views

PT-2024-1396 · Trendnet · Trendnet Tew-800Mb

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-800MB version 1.0.1.0 Description: A critical issue was found in the component POST Request Handler, where the manipulation of the DeviceURL argument leads to os command injection. This allows an attacker to execute arbitrary...

8.3CVSS8.7AI score0.25438EPSS
Exploits1References8
OSV
OSVadded 2024/01/25 9:15 p.m.1 views

CVE-2024-0885

A vulnerability classified as problematic has been found in SpyCamLizard 1.230. Affected is an unknown function of the component HTTP GET Request Handler. The manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma...

7.5CVSS4.9AI score0.01371EPSS
Exploits1References3
NVD
NVDadded 2024/01/25 9:15 p.m.27 views

CVE-2024-0885

A vulnerability classified as problematic has been found in SpyCamLizard 1.230. Affected is an unknown function of the component HTTP GET Request Handler. The manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma...

7.5CVSS6.1AI score0.01371EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2024/01/25 12:0 a.m.3 views

PT-2024-15890 · Unknown · Spycamlizard

Name of the Vulnerable Software and Affected Versions: SpyCamLizard version 1.230 Description: A vulnerability has been found in the HTTP GET Request Handler component of SpyCamLizard, affecting an unknown function. This issue leads to denial of service and can be exploited remotely. The exploit...

7.5CVSS7.1AI score0.01371EPSS
Exploits1References7
CVE
CVEadded 2024/01/21 8:0 a.m.111 views

CVE-2024-0769

CVE-2024-0769 corresponds to a path-traversal vulnerability in D-Link DIR-859 routers (affected file: /hedwig.cgi). Connected sources confirm the issue is triggered by manipulating the service argument with ../../../../htdocs/webinc/getcfg/DHCPS6.BRIDGE-1.xml, enabling remote access. The affected...

9.8CVSS9.4AI score0.82714EPSS
In wildExploits1References6Affected Software1
NVD
NVDadded 2024/01/19 9:15 p.m.14 views

CVE-2024-0733

A vulnerability was found in Smsot up to 2.12. It has been classified as critical. Affected is an unknown function of the file /api.php of the component HTTP POST Request Handler. The manipulation of the argument datasign leads to sql injection. It is possible to launch the attack remotely. The...

9.8CVSS7.5AI score0.00509EPSS
Exploits0References3
Prion
Prionadded 2024/01/19 9:15 p.m.17 views

Sql injection

A vulnerability was found in Smsot up to 2.12. It has been classified as critical. Affected is an unknown function of the file /api.php of the component HTTP POST Request Handler. The manipulation of the argument datasign leads to sql injection. It is possible to launch the attack remotely. The...

6.5CVSS7.7AI score0.00509EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2024/01/19 8:31 p.m.66 views

CVE-2024-0733

CVE-2024-0733 affects Smsot up to version 2.12, impacting the HTTP POST Request Handler in /api.php where manipulating the data[sign] parameter enables SQL injection. This is a remote, unauthenticated condition that can compromise confidentiality, integrity, and availability as indicated by CVSS ...

9.8CVSS9.7AI score0.00509EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2024/01/19 4:15 p.m.1 views

CVE-2024-0717

A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853,...

5.3CVSS5.5AI score
Exploits0References3
OSV
OSVadded 2024/01/19 4:15 p.m.9 views

CVE-2024-0718

A vulnerability, which was classified as problematic, has been found in liuwy-dlsdys zhglxt 4.7.7. This issue affects some unknown processing of the file /oa/notify/edit of the component HTTP POST Request Handler. The manipulation of the argument notifyTitle leads to cross site scripting. The...

4.8CVSS6.2AI score
Exploits0References3
NVD
NVDadded 2024/01/19 4:15 p.m.9 views

CVE-2024-0718

A vulnerability, which was classified as problematic, has been found in liuwy-dlsdys zhglxt 4.7.7. This issue affects some unknown processing of the file /oa/notify/edit of the component HTTP POST Request Handler. The manipulation of the argument notifyTitle leads to cross site scripting. The...

4.8CVSS4AI score0.00494EPSS
Exploits1References3
Rows per page
Query Builder