Lucene search
K

146616 matches found

NVD
NVD
added 2026/05/25 6:16 p.m.12 views

CVE-2026-9477

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS0.01909EPSS
Exploits0References5
OSV
OSV
added 2026/05/25 6:12 p.m.8 views

MAL-2026-4351 Malicious code in @databus-service-ui/ui-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b82b3af71dce087a185cffa6f3691ad5a4e4c3d9e35154070ef4ad0dd4f15b10 scripts/postinstall.js performs two install-time attacks against any machine that runs npm install. 1 Credential exfiltration: it iterates process.en...

6.4AI score
Exploits0References2
Ubuntu
Ubuntu
added 2026/05/25 6:2 p.m.14 views

USN-8304-1: Vim vulnerabilities

Joshua Rogers discovered that Vim incorrectly handled certain URL schemes in the netrw plugin. An attacker could possibly use this issue to execute arbitrary commands. CVE-2026-42307 It was discovered that Vim incorrectly handled command-line completion for the :find command. An attacker could...

6.6CVSS6AI score0.00917EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2026/05/25 5:30 p.m.7 views

CVE-2026-9478 Totolink A8000RU Web Management cstecgi.cgi setParentalRules os command injection

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setParentalRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack may be performe...

10CVSS7AI score0.01909EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 5:30 p.m.13 views

CVE-2026-9478

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setParentalRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack may be performe...

10CVSS5.5AI score0.01909EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/05/25 5:30 p.m.22 views

CVE-2026-9478

Totolink A8000RU Web Management Interface contains a vulnerability in /cgi-bin/cstecgi.cgi-setParentalRules where manipulating the enable argument can cause os command injection. Affected product: Totolink A8000RU (version 7.1cu.643_b20200521). Impact is remote with high confidentiality, integrit...

10CVSS7AI score0.01909EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 5:30 p.m.14 views

EUVD-2026-31712

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setParentalRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack may be performe...

10CVSS7AI score0.01909EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 5:30 p.m.24 views

CVE-2026-9478 Totolink A8000RU Web Management cstecgi.cgi setParentalRules os command injection

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setParentalRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack may be performe...

10CVSS0.01909EPSS
Exploits0References5
NVD
NVD
added 2026/05/25 5:16 p.m.17 views

CVE-2026-9476

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS0.01909EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 5:15 p.m.10 views

EUVD-2026-31710

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS7AI score0.01909EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 5:15 p.m.16 views

CVE-2026-9477

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS5.6AI score0.01909EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/25 5:15 p.m.8 views

CVE-2026-9477 Totolink A8000RU Web Management cstecgi.cgi setAccessDeviceCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS7AI score0.01909EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 5:15 p.m.25 views

CVE-2026-9477

CVE-2026-9477 affects Totolink A8000RU Web Management Interface. The vulnerability lies in the /cgi-bin/cstecgi.cgi setAccessDeviceCfg function where manipulating the mac argument enables OS command injection. It can be exploited remotely with no privileges or user interaction. Public exploit inf...

10CVSS7AI score0.01909EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 5:15 p.m.23 views

CVE-2026-9477 Totolink A8000RU Web Management cstecgi.cgi setAccessDeviceCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS0.01909EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 5:0 p.m.15 views

CVE-2026-9476

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS7.1AI score0.01909EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/25 5:0 p.m.24 views

CVE-2026-9476 Totolink A8000RU Web Management cstecgi.cgi setPasswordCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS0.01909EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 5:0 p.m.12 views

EUVD-2026-31709

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 5:0 p.m.8 views

CVE-2026-9476 Totolink A8000RU Web Management cstecgi.cgi setPasswordCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 5:0 p.m.21 views

CVE-2026-9476

Totolink A8000RU Web Management (firmware 7.1cu.643_b20200521) is affected via the /cgi-bin/cstecgi.cgi function setPasswordCfg. Manipulating the admpass parameter enables remote command injection, compromising confidentiality, integrity, and availability. Publicly available exploit exists, indic...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 4:45 p.m.24 views

CVE-2026-9475 Totolink A8000RU Web Management cstecgi.cgi setIpQosRules os command injection

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This affects the function setIpQosRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument Comment causes os command injection. Remote exploitation of the attack is...

10CVSS0.01909EPSS
Exploits0References5
Rows per page
Query Builder