Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

299 matches found

Nuclei
Nucleiadded 2026/05/11 5:40 a.m.130 views

DrayTek - Remote Code Execution

DrayTek Vigor2960 1.3.1Beta, Vigor3900 1.4.4Beta, and Vigor300B 1.3.3Beta, 1.4.2.1Beta, and 1.4.4Beta devices allow remote code execution as root without authentication via shell metacharacters to the cgi-bin/mainfunction.cgi URI. id: CVE-2020-8515 info: name: DrayTek - Remote Code Execution...

10CVSS7.9AI score0.94318EPSS
Exploits7References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-3229

Malware in sbrugna...

9.8CVSS9.3AI score0.09583EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-6609

Malware in sbrugna...

9.8CVSS9.3AI score0.02669EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-6610

Malware in sbrugna...

9.8CVSS9.3AI score0.00891EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-7123

Malware in sbrugna...

9.8CVSS9.3AI score0.11637EPSS
Exploits2References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-45323

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00181EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEVadded 2025/08/22 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-45890

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to downloadovpn...

8CVSS5.8AI score0.00574EPSS
In wildExploits0References2
VulnCheck KEV
VulnCheck KEVadded 2025/08/22 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-45891

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to deletewlanprofile...

8CVSS5.8AI score0.00574EPSS
In wildExploits0References2
VulnCheck KEV
VulnCheck KEVadded 2025/08/22 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-45885

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to autodiscoveryclear...

8CVSS5.8AI score0.00574EPSS
In wildExploits0References2
VulnCheck KEV
VulnCheck KEVadded 2025/08/22 12:0 a.m.6 views

VulnCheck KEV: CVE-2024-45884

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to setSWMGroup...

8CVSS5.8AI score0.00423EPSS
In wildExploits0References2
VulnCheck KEV
VulnCheck KEVadded 2025/08/22 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-45888

DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to setapmapconfig.'...

8CVSS5.8AI score0.00415EPSS
In wildExploits0References2
VulnCheck KEV
VulnCheck KEVadded 2025/08/22 12:0 a.m.7 views

VulnCheck KEV: CVE-2024-45887

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to doOpenVPN...

8CVSS5.8AI score0.00423EPSS
In wildExploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 9:18 a.m.1 views

CVE-2024-44845

DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the value parameter in the filterstring function...

8.8CVSS5.9AI score0.02646EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 9:17 a.m.1 views

CVE-2024-44844

DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the name parameter in the runcommand function...

8.8CVSS5.9AI score0.02646EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:24 a.m.4 views

CVE-2024-48153

DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the getsubconfig function...

9.8CVSS7.7AI score0.00201EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:8 a.m.5 views

CVE-2024-45882

DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to deletemapprofile...

8CVSS8.1AI score0.00582EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:7 a.m.5 views

CVE-2024-45884

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to setSWMGroup...

8CVSS8.1AI score0.00423EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:7 a.m.5 views

CVE-2024-45888

DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to setapmapconfig.'...

8CVSS8.1AI score0.00415EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:7 a.m.5 views

CVE-2024-45889

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to commandTable...

8CVSS8.1AI score0.00604EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:7 a.m.3 views

CVE-2024-45885

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to autodiscoveryclear...

8CVSS8.1AI score0.00574EPSS
Exploits0References1
Rows per page
Query Builder