CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

70853 matches found

EUVD•added 2026/05/24 10:30 p.m.•12 views

EUVD-2026-31602

A vulnerability was found in Edimax BR-6675nD 1.12. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component POST Request Handler. The manipulation of the argument...

6.5CVSS6.4AI score0.01158EPSS

Exploits0References4

Vulnrichment•added 2026/05/24 10:30 p.m.•8 views

CVE-2026-9402 Edimax BR-6675nD POST Request formWlanMP command injection

6.5CVSS6.4AI score0.01158EPSS

Exploits0References4

ATTACKERKB•added 2026/05/24 10:30 p.m.•12 views

CVE-2026-9402

6.5CVSS5.6AI score0.01158EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/24 10:30 p.m.•15 views

CVE-2026-9402 Edimax BR-6675nD POST Request formWlanMP command injection

6.5CVSS0.01158EPSS

Exploits0References4

CVE•added 2026/05/24 10:30 p.m.•13 views

CVE-2026-9402

The CVE-2026-9402 entry concerns Edimax BR-6675nD firmware 1.12. The vulnerability is in the POST Request Handler’s formWlanMP function (/goform/formWlanMP). Manipulating parameters such as ateFunc, ateGain, ateRate, ateChan, ateTxCount, various e2pTx/e2pTxPower and readE2P fields results in comm...

6.5CVSS6.4AI score0.01158EPSS

Exploits0References4

Vulnrichment•added 2026/05/24 10:0 p.m.•8 views

CVE-2026-9400 Edimax BR-6675nD POST Request formUSBStorage command injection

A flaw has been found in Edimax BR-6675nD 1.12. This issue affects the function formUSBStorage of the file /goform/formUSBStorage of the component POST Request Handler. Executing a manipulation of the argument subdir can lead to command injection. It is possible to launch the attack remotely. The...

6.5CVSS6.4AI score0.01158EPSS

Exploits0References4

ATTACKERKB•added 2026/05/24 10:0 p.m.•12 views

CVE-2026-9400

6.5CVSS5.6AI score0.01158EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/24 10:0 p.m.•15 views

CVE-2026-9400 Edimax BR-6675nD POST Request formUSBStorage command injection

6.5CVSS0.01158EPSS

Exploits0References4

EUVD•added 2026/05/24 10:0 p.m.•11 views

EUVD-2026-31603

6.5CVSS6.4AI score0.01158EPSS

Exploits0References4

CVE•added 2026/05/24 10:0 p.m.•20 views

CVE-2026-9400

Edimax BR-6675nD (firmware 1.12) is affected by a command-injection in the POST Request Handler’s formUSBStorage function (/goform/formUSBStorage). By manipulating the sub_dir parameter, an attacker can execute arbitrary commands remotely. The CVE description consistently notes a remote attack po...

6.5CVSS6.4AI score0.01158EPSS

Exploits0References4

NVD•added 2026/05/24 3:16 p.m.•14 views

CVE-2026-9386

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument lang leads to os command injection. The attack may be performed from remote...

10CVSS0.01732EPSS

Exploits0References5

NVD•added 2026/05/24 3:16 p.m.•16 views

CVE-2026-9387

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument resetFlags results in os command injection. It is...

10CVSS0.01732EPSS

Exploits0References5

NVD•added 2026/05/24 3:16 p.m.•15 views

CVE-2026-9388

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setScheduleCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument mode can lead to os command injection. It is possible to...

10CVSS0.0209EPSS

Exploits0References5

ATTACKERKB•added 2026/05/24 2:30 p.m.•9 views

CVE-2026-9388

10CVSS7.1AI score0.0209EPSS

Exploits0References5Affected Software1

EUVD•added 2026/05/24 2:30 p.m.•11 views

EUVD-2026-31544

10CVSS7.1AI score0.0209EPSS

Exploits0References5

Cvelist•added 2026/05/24 2:30 p.m.•16 views

CVE-2026-9388 Totolink A8000RU Web Management cstecgi.cgi setScheduleCfg os command injection

10CVSS0.0209EPSS

Exploits0References5

CVE•added 2026/05/24 2:30 p.m.•17 views

CVE-2026-9388

Totolink A8000RU Web Management (CVE-2026-9388) affects the /cgi-bin/cstecgi.cgi setScheduleCfg function. The vulnerability arises from manipulating the mode argument, enabling os command injection with remote access. Impact is high for confidentiality, integrity, and availability per CVSS metric...

10CVSS7.1AI score0.0209EPSS

Exploits0References5

NVD•added 2026/05/24 2:16 p.m.•13 views

CVE-2026-9384

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument ip results in os command injection. The attack can be executed...

10CVSS0.01732EPSS

Exploits0References5

NVD•added 2026/05/24 2:16 p.m.•13 views

CVE-2026-9385

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument command causes os command injection. The attack is possible to be...

10CVSS0.01732EPSS

Exploits0References5

Vulnrichment•added 2026/05/24 2:15 p.m.•7 views

CVE-2026-9387 Totolink A8000RU Web Management cstecgi.cgi setUpgradeFW os command injection

10CVSS7AI score0.01732EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by