Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

482 matches found

OSV
OSVadded 2025/12/15 5:15 p.m.3 views

CVE-2025-55901

TOTOLINK A3300R V17.0.0cu.596B20250515 is vulnerable to command injection in the function NTPSyncWithHost via the hosttime parameter...

6.5CVSS5.8AI score0.01136EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/12/15 12:0 a.m.21 views

CVE-2025-55901

TOTOLINK A3300R V17.0.0cu.596B20250515 is vulnerable to command injection in the function NTPSyncWithHost via the hosttime parameter...

0.01136EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/12/15 12:0 a.m.3 views

TOTOLINK A3300R 安全漏洞

TOTOLINK A3300R is a wireless router from China Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK A3300R V17.0.0cu.596B20250515, which originates from a command injection in the hosttime parameter of the NTPSyncWithHost function...

6.5CVSS7.5AI score0.01136EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/12/15 12:0 a.m.8 views

PT-2025-51256

Name of the Vulnerable Software and Affected Versions TOTOLINK A3300R version V17.0.0cu.596 B20250515 Description The TOTOLINK A3300R router firmware contains a command injection flaw in the NTPSyncWithHost function. The issue is triggered through the host time parameter. This allows for potentia...

6.5CVSS7.4AI score0.01136EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2025/12/15 12:0 a.m.2 views

CVE-2025-55901

TOTOLINK A3300R V17.0.0cu.596B20250515 is vulnerable to command injection in the function NTPSyncWithHost via the hosttime parameter...

7.2AI score0.01136EPSS
Exploits1References2
EUVD
EUVDadded 2025/12/15 12:0 a.m.4 views

EUVD-2025-203393

TOTOLINK A3300R V17.0.0cu.596B20250515 is vulnerable to command injection in the function NTPSyncWithHost via the hosttime parameter...

6.5CVSS7.1AI score0.01136EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/12/10 11:55 p.m.28 views

CVE-2025-67648 Shopware's inproper input validation can lead to Reflected XSS through Storefront Login Page

Shopware is an open commerce platform. Versions 6.4.6.0 through 6.6.10.9 and 6.7.0.0 through 6.7.5.0 have a Reflected XSS vulnerability in AuthController.php. A request parameter from the login page URL is directly rendered within the Twig template of the Storefront login page without further...

7.1CVSS0.00158EPSS
Exploits0References2
NVD
NVDadded 2025/11/20 3:17 p.m.3 views

CVE-2025-65222

Tenda AC21 V16.03.08.16 is vulnerable to Buffer Overflow via the rebootTime parameter of /goform/SetSysAutoRebbotCfg...

4.3CVSS0.02228EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/11/20 12:0 a.m.3 views

Tenda AC21 安全漏洞

Tenda AC21 is a dual-band Gigabit wireless router launched by Tenda Technology, designed for home high-speed Internet needs, supporting 802.11acwave2 technology, dual-band concurrent rate up to 2033Mbps, of which the 5GHz band rate up to 1733Mbps, to meet the high-bandwidth applications, such as ...

4.3CVSS7.3AI score0.02228EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/11/20 12:0 a.m.5 views

PT-2025-47587

Tenda AC21 V16.03.08.16 is vulnerable to Buffer Overflow via the rebootTime parameter of /goform/SetSysAutoRebbotCfg...

4.3CVSS7.2AI score0.02228EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/11/20 12:0 a.m.7 views

CVE-2025-65222

Tenda AC21 V16.03.08.16 is vulnerable to Buffer Overflow via the rebootTime parameter of /goform/SetSysAutoRebbotCfg...

0.02228EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/11/11 12:11 a.m.6 views

CVE-2025-63456

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS7.6AI score0.00324EPSS
Exploits1References1
EUVD
EUVDadded 2025/11/10 6:30 p.m.6 views

EUVD-2025-48945

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.1AI score0.00324EPSS
Exploits1References2
NVD
NVDadded 2025/11/10 5:15 p.m.8 views

CVE-2025-63456

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS0.00324EPSS
Exploits1References1
OSV
OSVadded 2025/11/10 5:15 p.m.2 views

CVE-2025-63456

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS5.9AI score0.00324EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/11/10 12:0 a.m.4 views

Tenda AX-1803 安全漏洞

Tenda AX-1803 is a dual-band Gigabit WiFi6 wireless router from Tenda that supports dual bands of 2.4GHz and 5GHz with a maximum transmission rate of 1774Mbps for home or small office scenarios. The Tenda AX-1803 suffers from a stack buffer overflow vulnerability that originates from the time...

7.5CVSS7.1AI score0.00324EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/11/10 12:0 a.m.10 views

PT-2025-46175

Name of the Vulnerable Software and Affected Versions Tenda AX-1803 version 1.0.0.1 Description The Tenda AX-1803 version 1.0.0.1 contains a stack overflow issue. This occurs through the time parameter within the SetSysTimeCfg function. A crafted request targeting this parameter can lead to a...

6.8AI score0.00324EPSS
Exploits1References4
CVE
CVEadded 2025/11/10 12:0 a.m.15 views

CVE-2025-63456

CVE-2025-63456 concerns the Tenda AX-1803 router (v1.0.0.1) with a stack overflow in the SetSysTimeCfg function triggered by the time parameter. The issue is a stack buffer overflow/length validation flaw that can be exploited by sending a crafted request to cause Denial of Service (DoS). Multipl...

7.5CVSS7.2AI score0.00324EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/11/10 12:0 a.m.3 views

CVE-2025-63456

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.2AI score0.00324EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/11/10 12:0 a.m.6 views

CVE-2025-63456

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

0.00324EPSS
Exploits1References1
Rows per page
Query Builder