Lucene search
K

44999 matches found

CNNVD
CNNVD
added 2025/12/11 12:0 a.m.5 views

Ruijie RG-BCR 安全漏洞

Ruijie RG-BCR is a series of cloud routers from China Ruijie Ruijie. A security vulnerability exists in the Ruijie RG-BCR RG-BCR860 version, which stems from improper handling of a specially crafted POST request for actiondealupdate in the file /usr/lib/lua/luci/controller/api/rcmsAPI.lua, which...

8.8CVSS6.9AI score0.02666EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.6 views

PT-2025-50600

A command injection vulnerability was discovered in TeamViewer DEX former 1E DEX, specifically within the 1E-ConfigMgrConsoleExtensions instructions. Improper input validation, allowing authenticated attackers with Actioner privileges to inject arbitrary commands. Exploitation enables remote...

6.8CVSS8AI score0.00758EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.6 views

PT-2025-50680

Name of the Vulnerable Software and Affected Versions Ruijie RG-BCR RG-BCR860 affected versions not specified Description An issue exists that allows attackers to execute arbitrary commands. This can be achieved by sending a specially crafted POST request to the...

8.8CVSS7.3AI score0.02666EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.3 views

TeamViewer DEX Client 安全漏洞

TeamViewer DEX Client is a digital employee experience and endpoint management software from TeamViewer Germany. A security vulnerability exists in TeamViewer DEX Client versions prior to V21.1 that stems from improper input validation and could lead to remote execution of arbitrary commands...

7.2CVSS6.8AI score0.00719EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.4 views

Ruijie X60 PRO 安全漏洞

Ruijie X60 PRO is a home wireless router from China Ruijie Ruijie. A security vulnerability exists in Ruijie X60 PRO X6010212014RG-X60 PRO version V1.00V2.00, which originates from improper handling of a specially crafted POST request for moduleset in the file...

8.8CVSS7AI score0.02308EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.4 views

Ruijie X30 PRO 安全漏洞

Ruijie X30 PRO is a home wireless router from Ruijie China. A security vulnerability exists in the Ruijie X30 PRO X30-PRO-V109241521 version, which stems from improper handling of a specially crafted POST request for moduleset in the file /usr/local/lua/devsta/nbrcwmp.lua, which could lead to the...

8.8CVSS6.9AI score0.02666EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.9 views

PT-2025-50597

A command injection vulnerability was discovered in TeamViewer DEX former 1E DEX, specifically within the 1E-Explorer-TachyonCore-LogoffUser instruction prior V21.1. Improper input validation, allowing authenticated attackers with Actioner privileges to inject arbitrary commands. Exploitation...

6.8CVSS8AI score0.00719EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.2 views

Elkarte 代码问题漏洞

Elkarte is an open source forum software by ElkArte. A code issue vulnerability exists in Elkarte version 1.1.9, which stems from a PHP file upload during theme installation that could lead to the execution of system commands...

8.6CVSS7.2AI score0.00468EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.5 views

PT-2025-50688

Name of the Vulnerable Software and Affected Versions Ruijie X60 PRO versions V1.00 through V2.00 Description An issue exists in Ruijie X60 PRO that allows attackers to execute arbitrary commands. This is due to an OS Command Injection flaw present in the module get function within the...

7.8CVSS7.3AI score0.01135EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.3 views

Compuware iStrobe Web 代码问题漏洞

Compuware iStrobe Web is a mainframe performance analysis and optimization tool from Compuware Corporation. A code issue vulnerability exists in Compuware iStrobe Web version 20.13, which arises from a path traversal in the file upload form that could result in the upload of a JSP webshell and th...

9.2CVSS7.3AI score0.00721EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.4 views

Ruijie RG-BCR 安全漏洞

Ruijie RG-BCR is a series of cloud routers from China Ruijie Ruijie. A security vulnerability exists in the Ruijie RG-BCR RG-BCR860 version, which stems from improper handling of a specially crafted POST request for actionwireless in the file /usr/lib/lua/luci/control/admin/wireless.lua, which...

8.8CVSS6.9AI score0.02666EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.5 views

EulerOS 2.0 SP13 : samba (EulerOS-SA-2025-2532)

According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in Samba File Transfer Software the affected version is unknown and classified as critical.The CWE definition for th...

10CVSS5.7AI score0.39677EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.6 views

PT-2025-50666

Name of the Vulnerable Software and Affected Versions Ruijie RG-BCR600W affected versions not specified Description An issue exists in Ruijie RG-BCR600W that allows attackers to execute arbitrary commands. This is possible through a crafted POST request to the restart modules function located in...

8.8CVSS7.2AI score0.01725EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.6 views

PT-2025-50681

Name of the Vulnerable Software and Affected Versions Ruijie RG-YST EST, YSTAP 3.01B11P280YST250F versions V1.xxV2.xx Description An OS Command Injection issue exists in Ruijie RG-YST EST, YSTAP 3.01B11P280YST250F. Successful exploitation allows attackers to execute arbitrary commands. This is...

8.8CVSS7.3AI score0.01451EPSS
Exploits0References6
NVD
NVD
added 2025/12/10 10:16 p.m.3 views

CVE-2025-65294

Aqara Hub devices including Camera Hub G3 4.1.90027, Hub M2 4.3.60027, and Hub M3 4.3.60025 contain an undocumented remote access mechanism enabling unrestricted remote command execution...

9.8CVSS0.00843EPSS
Exploits1References2
OSV
OSV
added 2025/12/10 10:16 p.m.4 views

CVE-2025-65294

Aqara Hub devices including Camera Hub G3 4.1.90027, Hub M2 4.3.60027, and Hub M3 4.3.60025 contain an undocumented remote access mechanism enabling unrestricted remote command execution...

9.8CVSS5.8AI score0.00843EPSS
Exploits1References2
OSV
OSV
added 2025/12/10 10:16 p.m.5 views

CVE-2024-58284

PopojiCMS 2.0.1 contains an authenticated remote command execution vulnerability that allows administrative users to inject malicious PHP code through the metadata settings endpoint. Attackers can log in and modify the meta content to create a web shell that executes arbitrary system commands...

7.2CVSS7.6AI score
Exploits0References5
NVD
NVD
added 2025/12/10 10:16 p.m.4 views

CVE-2024-58280

CMSimple 5.15 contains a remote command execution vulnerability that allows authenticated attackers to modify file extensions and upload malicious PHP files. Attackers can append ',php' to Extensionsuserfiles and upload a shell script to the media directory to execute arbitrary code on the server...

8.8CVSS0.00809EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/10 9:15 p.m.3 views

CVE-2024-58284 PopojiCMS 2.0.1 Remote Command Execution via Authenticated Metadata Settings

PopojiCMS 2.0.1 contains an authenticated remote command execution vulnerability that allows administrative users to inject malicious PHP code through the metadata settings endpoint. Attackers can log in and modify the meta content to create a web shell that executes arbitrary system commands...

8.6CVSS7.3AI score0.00947EPSS
Exploits1References5
CVE
CVE
added 2025/12/10 9:14 p.m.8 views

CVE-2024-58282

CVE-2024-58282 affects Serendipity 2.5.0 via remote code execution through authenticated media uploads. The root cause is improper handling of uploaded PHP files, enabling an authenticated administrator to upload a PHP shell that executes arbitrary commands on the server. Public references note t...

8.6CVSS8AI score0.00858EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder