Lucene search
K

482 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-40903

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00938EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-39276

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.00906EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-46078

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00755EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-37826

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01056EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-30920

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.0112EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-43486

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00767EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19877

Malicious code in bioql PyPI...

8.1CVSS6.5AI score0.0039EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25319

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.0037EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25011

Malicious code in bioql PyPI...

9CVSS8.8AI score0.00739EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/09/28 12:0 a.m.3 views

Code-Projects Simple Scheduling System SQL注入漏洞

Simple Scheduling System is a simple scheduling system. Simple Scheduling System has a SQL injection vulnerability that originates from the starttime/endtime parameters in the /addtime.php file not being securely filtered. An attacker can exploit this vulnerability to execute malicious SQL comman...

9.8CVSS8.2AI score0.00441EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/09/25 2:54 a.m.14 views

CVE-2025-57636

OS Command injection vulnerability in D-Link C1 2020-02-21. The sub47F028 function in jhttpd contains a command injection vulnerability via the HTTP parameter "time"...

6.5CVSS7.8AI score0.0112EPSS
Exploits1References1
CNVD
CNVD
added 2025/09/25 12:0 a.m.2 views

D-Link DI-7100G OS Command Injection Vulnerability

D-Link DI-7100G is an Internet Behavior Management router for SMBs, supporting Gigabit network transfer rate some models are labeled as 100 Gigabit, equipped with 4 WAN interfaces and 1 LAN interface, built-in USB2.0 ports, and compliant with IEEE802.11n/g/b wireless standard and IEEE802.3 wired...

6.5CVSS7.7AI score0.0112EPSS
Exploits1References1
OSV
OSV
added 2025/09/23 8:15 p.m.4 views

CVE-2025-57636

OS Command injection vulnerability in D-Link C1 2020-02-21. The sub47F028 function in jhttpd contains a command injection vulnerability via the HTTP parameter "time"...

6.5CVSS5.8AI score0.0112EPSS
Exploits1References2
NVD
NVD
added 2025/09/23 8:15 p.m.4 views

CVE-2025-57636

OS Command injection vulnerability in D-Link C1 2020-02-21. The sub47F028 function in jhttpd contains a command injection vulnerability via the HTTP parameter "time"...

6.5CVSS0.0112EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/09/23 12:0 a.m.6 views

PT-2025-39210

Name of the Vulnerable Software and Affected Versions D-Link C1 versions prior to 2020-02-21 Description A command injection issue exists in the jhttpd component of the D-Link C1. The sub 47F028 function is susceptible to command injection through the time HTTP parameter. This allows for potentia...

6.5CVSS7.2AI score0.0112EPSS
Exploits1References9
Vulnrichment
Vulnrichment
added 2025/09/23 12:0 a.m.3 views

CVE-2025-57636

OS Command injection vulnerability in D-Link C1 2020-02-21. The sub47F028 function in jhttpd contains a command injection vulnerability via the HTTP parameter "time"...

7.4AI score0.0112EPSS
Exploits1References2
CVE
CVE
added 2025/09/23 12:0 a.m.18 views

CVE-2025-57636

The CVE-2025-57636 entry describes an OS command injection in the D-Link C1 device. Affected component: jhttpd; vulnerable function sub_47F028; exploitation via the HTTP parameter time. Impact per PT-2025-39210: potential unauthorized system access. Affected versions are those prior to 2020-02-21...

6.5CVSS7.4AI score0.0112EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/09/23 12:0 a.m.6 views

CVE-2025-57636

OS Command injection vulnerability in D-Link C1 2020-02-21. The sub47F028 function in jhttpd contains a command injection vulnerability via the HTTP parameter "time"...

0.0112EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/15 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-34152

An unauthenticated OS command injection vulnerability exists in the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02 via the 'time' parameter of the '/protocol.csp?' endpoint. The input is processed by the internal date '-s' command without rebooting or disrupting HTTP service. Unlike othe...

9.4CVSS5.9AI score0.61676EPSS
In wildExploits5References184
Metasploit
Metasploit
added 2025/09/10 6:53 p.m.616 views

Shenzhen Aitemi M300 Wi-Fi Repeater Unauthenticated RCE (time param)

This module exploits an unauthenticated remote command injection vulnerability in the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02. The vulnerability lies in the 'time' parameter of the time configuration endpoint, which is passed unsanitized to a shell command executed via the date -s...

9.4CVSS5.8AI score0.61676EPSS
Exploits5
Rows per page
Query Builder