Lucene search
K

52 matches found

EUVD
EUVD
added 2026/05/04 1:45 a.m.8 views

EUVD-2026-26873

A weakness has been identified in Totolink WA300 5.2cu.7112B20190227. The impacted element is the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This manipulation of the argument langType causes command injection. Remote exploitation of the attack ...

6.5CVSS6.4AI score0.00916EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/04/10 5:45 a.m.1 views

CVE-2026-6026 Totolink A7100RU CGI cstecgi.cgi setPortalConfWeChat os command injection

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. This vulnerability affects the function setPortalConfWeChat of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument enable results in os command injection. The attack can ...

10CVSS7AI score0.02981EPSS
Exploits0References5
NVD
NVD
added 2026/03/31 3:15 a.m.2 views

CVE-2026-5177

A weakness has been identified in Totolink A3300R 17.0.0cu.557b20221024. Affected by this vulnerability is the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument rxRate can lead to command injection. The attack may be launched remotely. The exploit...

8.8CVSS0.02404EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/22 1:32 p.m.5 views

CVE-2026-1326 Totolink NR1800X POST Request cstecgi.cgi setWanCfg command injection

A weakness has been identified in Totolink NR1800X 9.1.0u.6279B20210910. This vulnerability affects the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This manipulation of the argument Hostname causes command injection. The attack can be initiated...

6.5CVSS5.5AI score0.03212EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-44649

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01354EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-22753

Malicious code in bioql PyPI...

9CVSS8.8AI score0.01035EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-25902

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.09214EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-32935

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00671EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-49276

Malicious code in bioql PyPI...

9CVSS8.8AI score0.01419EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-8682

Malicious code in bioql PyPI...

6.9CVSS5.6AI score0.00598EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-16088

Malicious code in bioql PyPI...

9.8CVSS6.9AI score0.04909EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-50637

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01852EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-50698

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.0123EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-16091

Malicious code in bioql PyPI...

9.8CVSS7.7AI score0.03834EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-16367

Malicious code in bioql PyPI...

9.8CVSS8.8AI score0.01145EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/01 12:0 a.m.6 views

PT-2025-35484

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20211108.1423 Description: A buffer overflow issue exists in the sub 419BE0 function of the /boafrm/formIpQoS file. Manipulation of the mac argument causes the overflow, and the attack can be initiated remotely...

9CVSS8.9AI score0.00598EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/07/28 7:34 a.m.11 views

CVE-2025-8181

A vulnerability, which was classified as critical, was found in TOTOLINK N600R and X2000R 1.0.0.1. This affects an unknown part of the file vsftpd.conf of the component FTP Service. The manipulation leads to least privilege violation. It is possible to initiate the attack remotely...

8.6CVSS7AI score0.00905EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/07/21 12:0 a.m.7 views

CVE-2025-44655

In TOTOLink A7100RU V7.4, A950RG V5.9, and T10 V5.9, the chrootlocaluser option is enabled in the vsftpd.conf. This could lead to unauthorized access to system files, privilege escalation, or use of the compromised server as a pivot point for internal network attacks...

6.5AI score0.00341EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/21 12:0 a.m.7 views

CVE-2025-44655

In TOTOLink A7100RU V7.4, A950RG V5.9, and T10 V5.9, the chrootlocaluser option is enabled in the vsftpd.conf. This could lead to unauthorized access to system files, privilege escalation, or use of the compromised server as a pivot point for internal network attacks...

0.00341EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/27 6:18 p.m.9 views

CVE-2025-6620

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been rated as critical. Affected by this issue is the function setUpgradeUboot of the file upgrade.so. The manipulation of the argument FileName leads to os command injection. The attack may be launched remotely. The exploit has bee...

9.8CVSS7.8AI score0.02695EPSS
Exploits1References1
Rows per page
Query Builder