Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1596 matches found

Positive Technologies
Positive Technologiesadded 2025/07/07 12:0 a.m.1 views

PT-2025-29309 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: A critical vulnerability exists in the Tenda FH1201. The fromRouteStatic function within the HTTP POST Request Handler, located in the file /goform/fromRouteStatic, is susceptible to a buffer overflo...

9CVSS8.7AI score0.01103EPSS
Exploits1References14
Positive Technologies
Positive Technologiesadded 2025/07/06 12:0 a.m.2 views

PT-2025-29307 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: A critical vulnerability exists in the Tenda FH1201. The vulnerability affects the formWrlsafeset function within the /goform/AdvSetWrlsafeset file of the HTTP POST Request Handler component...

9CVSS8.8AI score0.01103EPSS
Exploits1References14
NVD
NVDadded 2025/07/04 10:15 p.m.2 views

CVE-2025-7070

A vulnerability has been found in IROAD Dashcam Q9 up to 20250624 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component MFA Pairing Request Handler. The manipulation leads to allocation of resources. The attack needs to be done within the local...

8.8CVSS0.00867EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/07/04 12:0 a.m.2 views

PT-2025-28024 · Iroad · Iroad Dashcam Q9

Name of the Vulnerable Software and Affected Versions: IROAD Dashcam Q9 up to 20250624 Description: A vulnerability has been found in the component MFA Pairing Request Handler, affecting an unknown functionality. The manipulation leads to allocation of resources. The attack needs to be done withi...

5.3CVSS4.3AI score0.00867EPSS
Exploits1References8
RedhatCVE
RedhatCVEadded 2025/07/03 2:23 p.m.3 views

CVE-2025-6953

A vulnerability, which was classified as critical, was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is...

9CVSS7.5AI score0.01357EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/07/03 3:21 a.m.7 views

CVE-2025-6940

A vulnerability classified as critical was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected by this vulnerability is an unknown functionality of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflo...

9CVSS7.5AI score0.00766EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/07/03 2:22 a.m.12 views

CVE-2025-6939

A vulnerability classified as critical has been found in TOTOLINK A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/formWlSiteSurvey of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

9CVSS7.5AI score0.00538EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2025/07/03 12:0 a.m.4 views

DLink DIR-859 1.05 & 1.06B01 Path Traversal

The version of DLink installed on the remote host is prior to 1.07b03. It is, therefore, affected by a path traversal vulnerability as referenced in the vendor advisory. - A vulnerability was found in D-Link DIR-859 1.06B01. It has been rated as critical. Affected by this issue is some unknown...

9.8CVSS6.6AI score0.7676EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/06/30 8:47 p.m.11 views

CVE-2025-6824

A vulnerability classified as critical has been found in TOTOLINK X15 up to 1.0.0-B20230714.1105. Affected is an unknown function of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible ...

9CVSS9AI score0.01357EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/06/29 3:27 a.m.6 views

CVE-2025-6751

A vulnerability, which was classified as critical, was found in Linksys E8450 up to 1.2.00.360516. This affects the function setdevicelanguage of the file portal.cgi of the component HTTP POST Request Handler. The manipulation of the argument dutlanguage leads to buffer overflow. It is possible t...

9CVSS7.2AI score0.00979EPSS
Exploits0References1
NVD
NVDadded 2025/06/28 8:15 p.m.3 views

CVE-2025-6824

A vulnerability classified as critical has been found in TOTOLINK X15 up to 1.0.0-B20230714.1105. Affected is an unknown function of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible ...

9CVSS0.01357EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2025/06/28 12:0 a.m.1 views

PT-2025-27503 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002RU version 3.0.0-B20230809.1615 Description: A critical vulnerability has been found in the HTTP POST Request Handler component of the TOTOLINK A3002RU router. The issue affects an unknown function of the file...

9CVSS7.3AI score0.00538EPSS
Exploits1References12
Positive Technologies
Positive Technologiesadded 2025/06/28 12:0 a.m.4 views

PT-2025-27504 · Totolink · Totolink A702R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability affects an unknown functionality of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the submit-url argument...

9CVSS7.2AI score0.00766EPSS
Exploits1References13
CNVD
CNVDadded 2025/06/27 12:0 a.m.2 views

AUO DIR-825 sub_4091AC Function Buffer Overflow Vulnerability

The AUO DIR-825 is a dual-band wireless router from AUO D-Link, mainly for SMB and SOHO environments. The AUO DIR-825 suffers from a buffer overflow vulnerability, which originates from the failure of the sub4091AC function in the HTTP POST Request Handler component to correctly validate the leng...

9CVSS8.2AI score0.00825EPSS
Exploits1References1
CNVD
CNVDadded 2025/06/27 12:0 a.m.42 views

D-Link DIR-825 do_file function buffer overflow vulnerability

The D-Link DIR-825 is a router from China's AUO D-Link. A buffer overflow vulnerability exists in the D-Link DIR-825 version 2.03, which originates from the function dofile in the HTTP POST Request Handler component that fails to correctly validate the length and size of the input data, and can b...

9CVSS8.6AI score0.00825EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/06/26 3:21 p.m.4 views

CVE-2025-6568

A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

9CVSS7.5AI score0.00839EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/06/26 1:19 p.m.2 views

CVE-2025-6565

A vulnerability was found in Netgear WNCE3001 1.0.0.50. It has been classified as critical. This affects the function httpd of the component HTTP POST Request Handler. The manipulation of the argument Host leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

9CVSS7.4AI score0.00994EPSS
Exploits0References1
NVD
NVDadded 2025/06/25 7:15 p.m.3 views

CVE-2025-6627

A vulnerability has been found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...

9CVSS0.00912EPSS
Exploits1References6
OSV
OSVadded 2025/06/24 3:15 p.m.2 views

CVE-2025-6568

A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

8.7CVSS6.2AI score0.00839EPSS
Exploits1References6
NVD
NVDadded 2025/06/24 3:15 p.m.6 views

CVE-2025-6568

A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

9CVSS0.00839EPSS
Exploits1References6
Rows per page
Query Builder