Lucene search
K

79 matches found

EUVD
EUVD
added 2026/04/02 3:31 p.m.5 views

EUVD-2026-18298

Endian Firewall version 3.3.25 and prior allow stored cross-site scripting XSS via the remark parameter to /cgi-bin/outgoingfw.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page...

6.4CVSS5.9AI score0.00138EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.10 views

Endian Firewall 跨站脚本漏洞

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall REMARK parameter, which stems from improper handling of the REMARK parameter in /cgi-bin/openvpnclient.cgi, and can be exploited by an attacker to inject malicious...

6.4CVSS5.7AI score0.00179EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/31 4:59 a.m.4 views

CVE-2026-5103

A weakness has been identified in Totolink A3300R 17.0.0cu.557b20221024. This issue affects the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument enable causes command injection. The attack is possible to be carried out remotely. The exploit has been made...

8.8CVSS6.4AI score0.03638EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.9 views

TOTOLINK A3300R 命令注入漏洞

TOTOLINK A3300R is a wireless router produced by TOTOLINK Corporation. The TOTOLINK A3300R version 17.0.0cu.557b20221024 contains a command injection vulnerability. This vulnerability stems from manipulating parameters in the /cgi-bin/cstecgi.cgi file, which may lead to command injection...

9.8CVSS7.1AI score0.01932EPSS
Exploits1References5
CVE
CVE
added 2026/03/30 12:0 a.m.13 views

CVE-2026-5102

Totolink A3300R (17.0.0cu.557_b20221024) is affected by CVE-2026-5102 in the Parameter Handler’s setSmartQosCfg function, via the /cgi-bin/cstecgi.cgi file. The qos_up_bw parameter can be manipulated to trigger a remote command injection, allowing an attacker to execute arbitrary commands on the ...

8.8CVSS6.4AI score0.02164EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/03/23 1:30 a.m.34 views

CVE-2026-4567 Tenda A15 UploadCfg stack-based overflow

A vulnerability has been found in Tenda A15 15.13.07.13. The impacted element is the function UploadCfg of the file /cgi-bin/UploadCfg. The manipulation of the argument File leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public an...

10CVSS0.03688EPSS
Exploits1References6
NVD
NVD
added 2026/03/20 2:16 a.m.5 views

CVE-2026-4466

A vulnerability has been found in Comfast CF-AC100 2.6.0.8. This affects an unknown function of the file /cgi-bin/mbox-config?method=SET&section=ntptimezone. The manipulation leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...

5.8CVSS0.02479EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/16 3:30 p.m.5 views

EUVD-2026-12285

A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected is the function...

6.5CVSS5.5AI score0.04088EPSS
Exploits1References16
CVE
CVE
added 2026/03/09 12:0 a.m.11 views

CVE-2026-30140

The CVE-2026-30140 entry describes an authentication-and-access-control flaw in Tenda W15E V02.03.01.26_cn. An unauthenticated attacker can access the /cgi-bin/DownloadCfg/RouterCfm.jpg endpoint to download the device configuration, exposing plaintext administrator credentials and enabling potent...

7.5CVSS6AI score0.00327EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/03/07 12:0 a.m.11 views

WAVLINK WL-NU516U1 命令注入漏洞

WAVLINK WL-NU516U1 is a wireless print server developed by WAVLINK Corporation. The version 240425 of WAVLINK WL-NU516U1 has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter “model” in the file /cgi-bin/adm.cgi, which may lead to command injecti...

7.2CVSS5.8AI score0.12929EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/03/03 10:13 p.m.13 views

OpenClaw's non-default autoAllowSkills setting could bypass on-miss exec prompt

Summary In openclaw versions up to and including 2026.2.22-2, a non-default exec-approval configuration could allow a skill-name collision to bypass an ask=on-miss prompt. When autoAllowSkills=true, a path-scoped executable such as ./skill-bin could resolve to basename skill-bin, satisfy the skil...

6AI score
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/02/16 6:31 a.m.11 views

EUVD-2026-6128

A flaw has been found in Tosei Self-service Washing Machine 4.02. Impacted is an unknown function of the file /cgi-bin/toseidatasend.php. Executing a manipulation of the argument adrtxt1 can lead to command injection. It is possible to launch the attack remotely. The exploit has been published an...

7.5CVSS5.4AI score0.02268EPSS
Exploits0References5
NVD
NVD
added 2026/02/08 5:15 p.m.8 views

CVE-2026-2167

A vulnerability was detected in Totolink WA300 5.2cu.7112B20190227. The impacted element is the function setAPNetwork of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument Ipaddr results in os command injection. The attack may be performed from remote. The exploit is now public and m...

8.8CVSS0.02268EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/08 12:0 a.m.7 views

TOTOLINK WA300 操作系统命令注入漏洞

TOTOLINK WA300 is a wireless access point from China Gion Electronics TOTOLINK. The TOTOLINK WA300 suffers from an operating system command injection vulnerability that originates from the parameter Ipaddr in the file /cgi-bin/cstecgi.cgi failing to correctly filter constructed command special...

8.8CVSS6.7AI score0.02268EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/01/29 8:32 p.m.39 views

CVE-2026-1623 Totolink A7000R cstecgi.cgi setUpgradeFW command injection

A weakness has been identified in Totolink A7000R 4.1cu.4154. Impacted is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument FileName causes command injection. The attack can be initiated remotely. The exploit has been made available to the public and...

6.5CVSS0.0218EPSS
Exploits1References6
OSV
OSV
added 2026/01/28 11:15 p.m.3 views

CVE-2026-1548

A flaw has been found in Totolink A7000R 4.1cu.4154. This impacts the function CloudACMunualUpdateUserdata of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument url causes command injection. The attack can be initiated remotely. The exploit has been published and may be used...

8.8CVSS5.7AI score0.031EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/01/27 4:59 a.m.8 views

CVE-2026-23890

A flaw was found in pnpm, a package manager. A remote attacker can exploit a path traversal vulnerability by crafting malicious npm packages. This vulnerability allows the attacker to bypass validation by using bin names starting with an "@" symbol, enabling them to create executable shims or...

6.5CVSS6.3AI score0.00438EPSS
Exploits1References6
EUVD
EUVD
added 2026/01/26 10:3 p.m.9 views

EUVD-2026-4653

pnpm is a package manager. Prior to version 10.28.2, when pnpm processes a package's directories.bin field, it uses path.join without validating the result stays within the package root. A malicious npm package can specify "directories": "bin": "../../../../tmp" to escape the package directory,...

6.7CVSS6AI score0.00244EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/01/26 10:3 p.m.7 views

CVE-2026-24131

pnpm is a package manager. Prior to version 10.28.2, when pnpm processes a package's directories.bin field, it uses path.join without validating the result stays within the package root. A malicious npm package can specify "directories": "bin": "../../../../tmp" to escape the package directory,...

6.7CVSS6AI score0.00244EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/12/19 9:14 p.m.7 views

CVE-2025-62001

BullWall Ransomware Containment contains excluded file paths, such as '$recycle.bin' that are not monitored. An attacker with file write permissions could bypass detection by renaming a directory. Versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 were confirmed to be affected; other versions before...

8.8CVSS6.8AI score0.00326EPSS
Exploits0References1
Rows per page
Query Builder