188 matches found
EUVD-2026-35025
A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly...
CVE-2026-11494 TOTOLINK AC1200 T8 vsftpd vsftpd.conf least privilege violation
A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly...
CVE-2026-11494 TOTOLINK AC1200 T8 vsftpd vsftpd.conf least privilege violation
A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly...
CVE-2026-11494
CVE-2026-11494 affects TOTOLINK AC1200 T8 firmware 4.1.5cu.8611, specifically an issue in the /etc/vsftpd.conf configuration of the vsftpd component. The described vulnerability arises from manipulation of the vsftpd.conf-related function, resulting in a least privilege violation. The advisory in...
PT-2026-47256
A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly...
Malicious code in @antv/t8 (npm)
Part of the Mini Shai-Hulud supply chain attack campaign in which a threat actor compromised the npm account atool and published 631 malicious versions across 314 npm packages in an automated 22-minute burst. Each malicious version injects a preinstall hook that executes a 498KB obfuscated Bun...
@antv/gpt-vis (>=1.0.0 <=1.0.0-beta.2) potentially affected by unknown CVE via @antv/t8 (=0.3.0)
@antv/t8 NPM version =0.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/t8 and may be impacted: - @antv/gpt-vis =1.0.0, =1.0.0-beta.2 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVT8-16754369...
EUVD-2023-28219
Malicious code in bioql PyPI...
EUVD-2024-16723
Malicious code in bioql PyPI...
EUVD-2023-28214
Malicious code in bioql PyPI...
EUVD-2024-49278
Malicious code in bioql PyPI...
EUVD-2023-28218
Malicious code in bioql PyPI...
EUVD-2024-16362
Malicious code in bioql PyPI...
EUVD-2023-28216
Malicious code in bioql PyPI...
EUVD-2023-28215
Malicious code in bioql PyPI...
EUVD-2023-28220
Malicious code in bioql PyPI...
EUVD-2023-28213
Malicious code in bioql PyPI...
EUVD-2023-28217
Malicious code in bioql PyPI...
CVE-2024-46419
TOTOLINK AC1200 T8 v4.1.5cu.861B20230220 has a buffer overflow vulnerability in the setWizardCfg function via the ssid5g parameter...
CVE-2024-46424
TOTOLINK AC1200 T8 v4.1.5cu.861B20230220 has a buffer overflow vulnerability in the UploadCustomModule function, which allows attackers to cause a Denial of Service DoS via the File parameter...