Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

304 matches found

CNNVD
CNNVDadded 2026/03/06 12:0 a.m.3 views

Precurio Intranet Portal 代码问题漏洞

Precurio Intranet Portal is a document management portal system developed by the American company Precurio. Version 2.0 of Precurio Intranet Portal has a code vulnerability. This vulnerability stems from the /public/admin/user/submitnew endpoint, where cross-site request forgery exists, potential...

5.3CVSS5.8AI score0.00094EPSS
Exploits0References2
NVD
NVDadded 2026/02/05 6:16 p.m.5 views

CVE-2025-15551

The response coming from TP-Link Archer MR200 v5.2, C20 v5 and v6, TL-WR850N v3, and TL-WR845N v4 for any request is getting executed by the JavaScript function like eval directly without any check. Attackers can exploit this vulnerability via a Man-in-the-Middle MitM attack to execute JavaScript...

5.9CVSS0.00051EPSS
Exploits0References10
OSV
OSVadded 2026/02/05 6:16 p.m.0 views

CVE-2025-15551

The response coming from TP-Link Archer MR200 v5.2, C20 v6, TL-WR850N v3, and TL-WR845N v4 for any request is getting executed by the JavaScript function like eval directly without any check. Attackers can exploit this vulnerability via a Man-in-the-Middle MitM attack to execute JavaScript code o...

5.6CVSS6AI score
Exploits0References8
Cvelist
Cvelistadded 2026/02/05 5:22 p.m.31 views

CVE-2025-15551 LAN Code Execution on TP-Link Archer MR200, Archer C20, TL-WR850N and TL-WR845N

The response coming from TP-Link Archer MR200 v5.2, C20 v5 and v6, TL-WR850N v3, and TL-WR845N v4 for any request is getting executed by the JavaScript function like eval directly without any check. Attackers can exploit this vulnerability via a Man-in-the-Middle MitM attack to execute JavaScript...

5.9CVSS0.00051EPSS
Exploits0References10
CVE
CVEadded 2026/02/05 5:22 p.m.18 views

CVE-2025-15551

The CVE-2025-15551 affects TP-Link Archer MR200 v5.2, C20 v6, TL-WR850N v3, and TL-WR845N v4. The issue is that the device response is processed by a JavaScript function like eval without validation, enabling a MitM attacker to execute arbitrary JavaScript in the router’s admin web portal. This i...

5.9CVSS6AI score0.00051EPSS
Exploits0References10Affected Software1
EUVD
EUVDadded 2026/02/05 5:22 p.m.4 views

EUVD-2025-206826

The response coming from TP-Link Archer MR200 v5.2, C20 v6, TL-WR850N v3, and TL-WR845N v4 for any request is getting executed by the JavaScript function like eval directly without any check. Attackers can exploit this vulnerability via a Man-in-the-Middle MitM attack to execute JavaScript code o...

5.9CVSS5.8AI score0.00051EPSS
Exploits0References8
Vulnrichment
Vulnrichmentadded 2026/02/05 5:22 p.m.4 views

CVE-2025-15551 LAN Code Execution on TP-Link Archer MR200, Archer C20, TL-WR850N and TL-WR845N

The response coming from TP-Link Archer MR200 v5.2, C20 v5 and v6, TL-WR850N v3, and TL-WR845N v4 for any request is getting executed by the JavaScript function like eval directly without any check. Attackers can exploit this vulnerability via a Man-in-the-Middle MitM attack to execute JavaScript...

5.9CVSS6AI score0.00051EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2026/02/05 12:0 a.m.3 views

PT-2026-6600

Name of the Vulnerable Software and Affected Versions TP-Link Archer MR200 version 5.2 TP-Link C20 version 6 TP-Link TL-WR850N version 3 TP-Link TL-WR845N version 4 Description The response from the devices is executed by a JavaScript function, such as eval, without proper validation. This allows...

5.9CVSS5.7AI score0.00051EPSS
Exploits0References11
RedhatCVE
RedhatCVEadded 2026/01/09 12:34 p.m.2 views

CVE-2023-45552

In VeridiumID before 3.5.0, a stored cross-site scripting XSS vulnerability has been discovered in the admin portal that allows an authenticated attacker to take over all accounts by sending malicious input via the self-service portal...

6.5CVSS5.4AI score0.00289EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 11:29 a.m.7 views

CVE-2021-27233

An issue was discovered in Mutare Voice EVM 3.x before 3.3.8. On the admin portal of the web application, password information for external systems is visible in cleartext. The Settings.asp page is affected by this issue...

4.9CVSS6.9AI score0.00125EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/13 6:30 p.m.2 views

EUVD-2025-203267

A vulnerability was determined in code-projects Student File Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/loginquery.php. Executing manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit h...

7.5CVSS6.6AI score0.00037EPSS
Exploits1References7
EUVD
EUVDadded 2025/11/27 3:31 p.m.3 views

EUVD-2025-199825

Firmware in SDMC NE6037 routers prior to version 7.1.12.2.44 has a network diagnostics tool vulnerable to a shell command injection attacks. In order to exploit this vulnerability, an attacker has to log in to the router's administrative portal, which by default is reachable only via LAN ports...

9.3CVSS7AI score0.00328EPSS
Exploits0References2
CVE
CVEadded 2025/11/27 1:42 p.m.17 views

CVE-2025-8890

The CVE-2025-8890 entry applies to SDMC NE6037 routers. Affected firmware is prior to version 7.1.12.2.44, where the Network Diagnostics tool is vulnerable to a shell command injection. Exploitation requires authentication to the router’s administrative portal, which is typically reachable only v...

9.3CVSS7.2AI score0.00328EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/11/27 12:0 a.m.4 views

PT-2025-48267

Name of the Vulnerable Software and Affected Versions SDMC NE6037 routers versions prior to 7.1.12.2.44 Description The firmware in SDMC NE6037 routers contains a network diagnostics tool susceptible to shell command injection attacks. Exploitation requires an attacker to log in to the router's...

9.3CVSS6.2AI score0.00328EPSS
Exploits0References11
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-22950

Malware in sbrugna...

4.8CVSS5.2AI score0.00207EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2017-15066

Malware in sbrugna...

5.4CVSS5.5AI score0.0015EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-7334

Malware in sbrugna...

4.9CVSS4.9AI score0.00141EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-24796

Malware in sbrugna...

4.3CVSS4.7AI score0.00204EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-21238

Malware in sbrugna...

9.3CVSS7.6AI score0.01073EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-14815

Malware in sbrugna...

9.1CVSS9.3AI score0.00512EPSS
Exploits0References3
Rows per page
Query Builder