Lucene search
K

146762 matches found

CNNVD
CNNVD
added 2026/05/24 12:0 a.m.8 views

Edimax EW-7438RPn 命令注入漏洞

The Edimax EW-7438RPn is a wireless signal extender produced by Edimax of Taiwan, China. Version 1.12 of the Edimax EW-7438RPn has a command injection vulnerability. This vulnerability stems from improper handling of the parameter maxConn/timeOut in the formConnectionSetting function of the Setti...

6.5CVSS6.6AI score0.01158EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.11 views

PT-2026-42971

Name of the Vulnerable Software and Affected Versions Edimax BR-6675nD version 1.12 Description A flaw in the POST Request Handler component allows for remote command injection. The issue exists within the formUSBStorage function located in the '/goform/formUSBStorage' endpoint. An attacker can...

6.5CVSS6.7AI score0.01158EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.14 views

PT-2026-42957

A weakness has been identified in Totolink A8000RU 7.1cu.643 b20200521. The impacted element is the function setScheduleCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument mode can lead to os command injection. It is possible to...

10CVSS7.1AI score0.0209EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.13 views

Edimax EW-7438RPn 操作系统命令注入漏洞

The Edimax EW-7438RPn is a wireless signal extender produced by Edimax of Taiwan, China. Versions of Edimax EW-7438RPn prior to 1.31 contained a vulnerability related to operating system command injection. This vulnerability stemmed from the formWizSurvey function in the webs component files or...

6.5CVSS6.6AI score0.01519EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.15 views

PT-2026-42927

Name of the Vulnerable Software and Affected Versions NousResearch hermes-agent versions prior to 5157f5427f19488b31c6fdebbacd15d798ce7f63 Description An OS command injection issue exists in the terminal tool component, specifically within the detect dangerous command function located in the...

7.5CVSS7.7AI score0.01657EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.13 views

PT-2026-42945

A vulnerability was found in Totolink A8000RU 7.1cu.643 b20200521. This vulnerability affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument ip results in os command injection. The attack can be executed...

10CVSS7AI score0.01732EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.12 views

PT-2026-42955

A vulnerability was identified in Totolink A8000RU 7.1cu.643 b20200521. Impacted is the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument lang leads to os command injection. The attack may be performed from remote...

10CVSS7.1AI score0.01732EPSS
Exploits0References5
Redos
Redos
added 2026/05/24 12:0 a.m.12 views

ROS-20260524-73-0045

A vulnerability in the Jenkins Automation Server built-in command line interface CLI is related to the dependency of critical actions on reverse DNS resolution. Exploitation of the vulnerability could allow a remote attacker to realize a CSWSH Cross-Site WebSocket Hijacking attack...

7.5CVSS6.1AI score0.00297EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.8 views

Edimax EW-7438RPn 命令注入漏洞

The Edimax EW-7438RPn is a wireless signal extender produced by Edimax of Taiwan, China. Version 1.12 of the Edimax EW-7438RPn contains a command injection vulnerability. This vulnerability stems from improper handling of the parameter “method” in the function formEZCHNwlanSetup of the component...

6.5CVSS6.6AI score0.01158EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.8 views

Edimax EW-7438RPn 命令注入漏洞

The Edimax EW-7438RPn is a wireless signal extender produced by Edimax of Taiwan, China. The Edimax EW-7438RPn version 1.28a has a command injection vulnerability. This vulnerability stems from improper handling of parameters such as...

6.5CVSS6.7AI score0.01398EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.7 views

Edimax BR-6675nD 命令注入漏洞

The Edimax BR-6675nD is a dual-band broadband wireless router produced by Edimax Corporation. Version 1.12 of the Edimax BR-6675nD contains a command injection vulnerability. This vulnerability stems from improper handling of the parameter “pinCode” in the POST Request Handler component...

6.5CVSS6.7AI score0.01158EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.12 views

PT-2026-42974

Name of the Vulnerable Software and Affected Versions Edimax BR-6675nD version 1.12 Description Command injection is possible via the POST Request Handler component. The issue exists in the formWlanMP function within the '/goform/formWlanMP' endpoint. A remote attacker can trigger this by...

6.5CVSS6.7AI score0.01158EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.11 views

PT-2026-42977

Name of the Vulnerable Software and Affected Versions Totolink A8000RU version 7.1cu.643 b20200521 Description A weakness in the Web Management Interface allows for remote OS command injection. This occurs through the manipulation of the enable argument within the setRemoteCfg function of the...

10CVSS7.2AI score0.01732EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.14 views

PT-2026-42938

A security flaw has been discovered in Edimax BR-6675nD 1.12. This affects the function formHwSet of the file /goform/formHwSet of the component POST Request Handler. The manipulation of the argument regDomain/ABandregDomain/nic0Addr/nic1Addr/wlanAddr/inicAddr results in command injection. It is...

6.5CVSS6.4AI score0.01171EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.8 views

TOTOLINK A8000RU 操作系统命令注入漏洞

TOTOLINK A8000RU is a wireless router produced by TOTOLINK, a Chinese company. The TOTOLINK A8000RU 7.1cu.643b20200521 version contains a vulnerability related to operating system command injection. This vulnerability stems from improper handling of the resetFlags parameter in the function...

10CVSS7.3AI score0.01732EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.14 views

PT-2026-42939

Name of the Vulnerable Software and Affected Versions Edimax BR-6675nD version 1.12 Description A command injection flaw exists in the POST Request Handler component. A remote attacker can exploit this by manipulating the pinCode argument within the formWpsStart function, located in the...

6.5CVSS6.7AI score0.01158EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.9 views

Edimax BR-6675nD 命令注入漏洞

The Edimax BR-6675nD is a dual-band broadband wireless router produced by Edimax Corporation. Version 1.12 of the Edimax BR-6675nD contains a command injection vulnerability. This vulnerability stems from improper handling of multiple parameters in the formWlanMP function of the goform/formWlanMP...

6.5CVSS6.6AI score0.01158EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.9 views

Edimax EW-7438RPn 命令注入漏洞

The Edimax EW-7438RPn is a wireless signal extender produced by Edimax of Taiwan, China. Version 1.12 of the Edimax EW-7438RPn contains a command injection vulnerability. This vulnerability stems from improper handling of the parameter submit-url in the formAccept function of the component POST...

6.5CVSS6.6AI score0.01158EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.13 views

PT-2026-42946

A vulnerability was determined in Totolink A8000RU 7.1cu.643 b20200521. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument command causes os command injection. The attack is possible to be...

10CVSS7AI score0.01732EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.7 views

TOTOLINK A8000RU 操作系统命令注入漏洞

The TOTOLINK A8000RU is a wireless router produced by TOTOLINK, a Chinese company. The Totolink A8000RU 7.1cu.643b20200521 version has a vulnerability related to operating system command injection. This vulnerability stems from improper handling of the command parameter in the setTracerouteCfg...

10CVSS7.3AI score0.01732EPSS
Exploits0References6
Rows per page
Query Builder