@ainsleydev/payload-helper (>=0.0.1 <=0.0.2), @bsct/payload (=1.0.0) +94 more potentially affected by CVE-2026-41690 via i18next-http-middleware (>=3.0.2 <=3.9.2)

i18next-http-middleware NPM version =3.0.2, =0.0.1, =1.0.1, =0.0.1, =0.0.1, =0.0.1, =0.1.2, =0.1.1, =8.0.0, =3.0.0, =1.0.0, =1.0.6, =1.0.8 and more Source cves: CVE-2026-41690 Source advisory: SNYK:JS-I18NEXTHTTPMIDDLEWARE-16415526...

CVE-2026-27097

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes CasaMia | Property Rental Real Estate WordPress Theme casamia allows PHP Local File Inclusion.This issue affects CasaMia | Property Rental Real Estate WordPress Them...

EUVD-2026-9603

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes CasaMia | Property Rental Real Estate WordPress Theme casamia allows PHP Local File Inclusion.This issue affects CasaMia | Property Rental Real Estate WordPress Them...

CVE-2022-26834

Improper access control vulnerability in Rakuten Casa version APFV141 or APFV200 allows a remote attacker to obtain the information stored in the product because the product is set to accept HTTP connections from the WAN side by default...

EUVD-2020-23995

Malware in sbrugna...

EUVD-2022-31384

Malicious code in bioql PyPI...

EUVD-2022-33146

Malicious code in bioql PyPI...

WordPress Smart Casa Theme <= 1.0.11 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Smart Casa versions = 1.0.11...

WordPress Smart Casa Theme <= 1.0.11 is vulnerable to Local File Inclusion

Software Smart Casa Type Theme Vulnerable versions = 1.0.11 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-26592 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID fbd7731da0a1 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...

CVE-2024-26519

An issue in Casa Systems NTC-221 version 2.0.99.0 and before allows a remote attacker to execute arbitrary code via a crafted payload to the /www/cgi-bin/nas.cgi component...

CVE-2024-25290

An issue in Casa Systems NL1901ACV R6B032 allows a remote attacker to execute arbitrary code via the userName parameter of the add function...

CVE-2022-29525

Rakuten Casa version APFV141 or APFV200 uses a hard-coded credential which may allow a remote unauthenticated attacker to log in with the root privilege and perform an arbitrary operation...

CVE-2020-36517

An information leak in Nabu Casa Home Assistant Operating System and Home Assistant Supervised 2022.03 allows a DNS operator to gain knowledge about internal network resources via the hardcoded DNS resolver configuration...

CVE-2024-26519

An issue in Casa Systems NTC-221 version 2.0.99.0 and before allows a remote attacker to execute arbitrary code via a crafted payload to the /www/cgi-bin/nas.cgi component...

CVE-2024-26519

An issue in Casa Systems NTC-221 version 2.0.99.0 and before allows a remote attacker to execute arbitrary code via a crafted payload to the /www/cgi-bin/nas.cgi component...

CVE-2024-26519

An issue in Casa Systems NTC-221 version 2.0.99.0 and before allows a remote attacker to execute arbitrary code via a crafted payload to the /www/cgi-bin/nas.cgi component...

PT-2024-21414 · Casa Systems · Casa Systems Ntc-221

Name of the Vulnerable Software and Affected Versions: Casa Systems NTC-221 versions 2.0.99.0 and before Description: The issue allows a remote attacker to execute arbitrary code via a crafted payload to the "/www/cgi-bin/nas.cgi" component. This enables the attacker to potentially gain control...

Casa Systems NTC-221 访问控制错误漏洞

The Casa Systems NTC-221 is an industrial IoT router from Casa Systems, USA. A security vulnerability exists in Casa Systems NTC-221 version 2.0.99.0 and earlier, which originates from a vulnerability that allows remote attackers to execute arbitrary code via a specially crafted payload in the...

CVE-2024-26519

Casa Systems NTC-221 is affected (versions 2.0.99.0 and earlier). The issue allows remote code execution via a crafted payload to the /www/cgi-bin/nas.cgi component. Public sources consistently identify the vulnerable component and affected version range, but none of the connected documents provi...

juntosdesdecasa.com Cross Site Scripting vulnerability OBB-3941299

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...