Lucene search
K

146624 matches found

NVD
NVD
added 2026/05/25 1:16 p.m.20 views

CVE-2026-9453

A vulnerability was detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. This affects the function which of the file /src/application/skills-loader.ts of the component SkillsLoader. Performing a manipulation of the argument requires.bins results in command injection. T...

7.5CVSS0.01385EPSS
Exploits0References5
NVD
NVD
added 2026/05/25 1:16 p.m.13 views

CVE-2026-9455

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function UploadOpenVpnCert of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument FileName leads to os command injection. Remote exploitation of the...

10CVSS0.01909EPSS
Exploits0References5
NVD
NVD
added 2026/05/25 1:16 p.m.18 views

CVE-2026-9456

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enabled results in os command injection. The attack can be executed remotely. The...

10CVSS0.01909EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 12:30 p.m.35 views

CVE-2026-9458 Totolink A8000RU Web Management cstecgi.cgi setWanCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS0.02094EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 12:30 p.m.10 views

EUVD-2026-31678

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS7.1AI score0.02094EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 12:30 p.m.9 views

CVE-2026-9458

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS7.1AI score0.02094EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/25 12:30 p.m.8 views

CVE-2026-9458 Totolink A8000RU Web Management cstecgi.cgi setWanCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS7.1AI score0.02094EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 12:30 p.m.22 views

CVE-2026-9458

Technical details about CVE-2026-9458 are not publicly available in the provided documents. Monitor for updates; the Connected documents do not specify affected versions, vectors, impact, or remediation.

10CVSS7.1AI score0.02094EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 12:15 p.m.9 views

CVE-2026-9457

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument FileName causes os command injection. The attack is possible...

10CVSS7AI score0.02094EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/25 12:15 p.m.13 views

EUVD-2026-31677

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument FileName causes os command injection. The attack is possible...

10CVSS7AI score0.02094EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 12:15 p.m.35 views

CVE-2026-9457 Totolink A8000RU Web Management cstecgi.cgi UploadFirmwareFile os command injection

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument FileName causes os command injection. The attack is possible...

10CVSS0.02094EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 12:15 p.m.9 views

CVE-2026-9457 Totolink A8000RU Web Management cstecgi.cgi UploadFirmwareFile os command injection

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument FileName causes os command injection. The attack is possible...

10CVSS7AI score0.02094EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 12:15 p.m.20 views

CVE-2026-9457

CVE-2026-9457 affects Totolink A8000RU Web Management interface (file /cgi-bin/cstecgi.cgi, function UploadFirmwareFile). The vulnerability arises from manipulating the FileName argument, leading to os command injection. It can be exploited remotely without authentication, as indicated by the des...

10CVSS7AI score0.02094EPSS
Exploits0References5
OSV
OSV
added 2026/05/25 12:3 p.m.11 views

MAL-2026-4350 Malicious code in clobprice.api (npm)

A campaign of npm packages sharing a common dropper clob.js that downloads and persistently installs a Windows executable from IPFS on postinstall. The dropper fetches the binary from IPFS CID bafybeif3zkapj364ofnrvbty7oj5h5ufpxlp4s62usk3ulxrru35e3gssa via multiple public gateways Pinata,...

5.8AI score
Exploits0References3
OSV
OSV
added 2026/05/25 12:2 p.m.9 views

MAL-2026-4349 Malicious code in clob.api (npm)

A campaign of npm packages sharing a common dropper clob.js that downloads and persistently installs a Windows executable from IPFS on postinstall. The dropper fetches the binary from IPFS CID bafybeif3zkapj364ofnrvbty7oj5h5ufpxlp4s62usk3ulxrru35e3gssa via multiple public gateways Pinata,...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/25 12:0 p.m.11 views

Malicious code in @devcarron/clob (npm)

A campaign of npm packages sharing a common dropper clob.js that downloads and persistently installs a Windows executable from IPFS on postinstall. The dropper fetches the binary from IPFS CID bafybeif3zkapj364ofnrvbty7oj5h5ufpxlp4s62usk3ulxrru35e3gssa via multiple public gateways Pinata,...

5.8AI score
Exploits0References1
Cvelist
Cvelist
added 2026/05/25 12:0 p.m.33 views

CVE-2026-9456 Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCfg os command injection

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enabled results in os command injection. The attack can be executed remotely. The...

10CVSS0.01909EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 12:0 p.m.12 views

CVE-2026-9456

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enabled results in os command injection. The attack can be executed remotely. The...

10CVSS7AI score0.01909EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/25 12:0 p.m.12 views

EUVD-2026-31674

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enabled results in os command injection. The attack can be executed remotely. The...

10CVSS5.6AI score0.01909EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 12:0 p.m.20 views

CVE-2026-9456

CVE-2026-9456 affects Totolink A8000RU Web Management Interface, specifically the function setOpenVpnCfg in the file /cgi-bin/cstecgi.cgi . The vulnerability is an os command injection and can be exploited remotely through that function. The entry lists the impacted product/version as Totolink A8...

10CVSS7AI score0.01909EPSS
Exploits0References5
Rows per page
Query Builder