Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2026/05/09 9:32 p.m.7 views

EUVD-2026-28920

A security flaw has been discovered in Wavlink NU516U1 M16U1V240425. This vulnerability affects the function wzdap of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument EncrypType/wlPass is directly passed by the attacker/so we can control the EncrypType/wlPass results in os...

6.5CVSS5.6AI score0.00351EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/02/16 5:2 p.m.2 views

CVE-2026-2566

A security vulnerability has been detected in Wavlink WL-NU516U1 up to 130/260. This affects the function sub406194 of the file /cgi-bin/adm.cgi. Such manipulation of the argument firmwareurl leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed...

8.6CVSS6.3AI score0.00057EPSS
Exploits0References4Affected Software1
NVD
NVDadded 2025/03/26 8:15 p.m.7 views

CVE-2025-26008

In Telesquare TLR-2005KSH 1.1.4, an unauthorized stack overflow vulnerability exists when requesting admin.cgi parameter with setSyncTimeHost...

9.8CVSS0.00647EPSS
Exploits0References1
OSV
OSVadded 2025/03/26 7:15 p.m.0 views

CVE-2025-26002

Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setSyncTimeHost...

9.8CVSS5.8AI score0.00647EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/03/26 12:0 a.m.4 views

CVE-2025-26010

Telesquare TLR-2005KSH 1.1.4 allows unauthorized password modification when requesting the admin.cgi parameter with setUserNamePassword...

9.6AI score0.00338EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/03/26 12:0 a.m.2 views

Telesquare TLR-2005Ksh 安全漏洞

The Telesquare TLR-2005Ksh is a wireless router from the South Korean company Telesquare. A security vulnerability exists in Telesquare TLR-2005Ksh version 1.1.4 that originates from an unauthorized stack overflow when requesting the admin.cgi parameter setSyncTimeHost...

9.8CVSS7AI score0.00647EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEVadded 2023/06/22 12:0 a.m.0 views

VulnCheck KEV: CVE-2019-20500

D-Link DWL-2600AP access point contains an authenticated command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=configsave configBackup or downloadServerip parameter...

7.8CVSS7.3AI score0.89895EPSS
Exploits3References1
Exploit DB
Exploit DBadded 2009/06/08 12:0 a.m.46 views

Interlogy Profile Manager Basic - Insecure Cookie Handling

interlogy Profile Manager Basic for ByPass Insecure Cookie Handling Vulnerability ---------------------------------------------------------- Discovered By: ZoRLu Date: 06/06/2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: Kpss AnanI...

7.4AI score
Exploits0
0day.today
0day.todayadded 2009/05/14 12:0 a.m.18 views

MRCGIGUY Message Box 1.0 Insecure Cookie Handling Vuln

Exploit for unknown platform in category web applications ====================================================== MRCGIGUY Message Box 1.0 Insecure Cookie Handling Vuln ====================================================== --------------------------------------------------------------- Message Bo...

7.1AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2008/11/21 12:0 a.m.2 views

PT-2008-6327 · Apple · Cups

Name of the Vulnerable Software and Affected Versions: CUPS versions prior to 1.3.8 Description: The issue allows remote attackers to bypass intended policy and conduct CSRF attacks via the add and cancel RSS subscription functions in the web interface. This occurs because the web interface uses...

10CVSS7.4AI score0.00285EPSS
Exploits1References10
NVD
NVDadded 1999/02/19 5:0 a.m.9 views

CVE-1999-1255

Hyperseek allows remote attackers to modify the hyperseek configuration by directly calling the admin.cgi program with an editfile action parameter...

5CVSS6.7AI score0.00429EPSS
Exploits0References2
Rows per page
Query Builder