CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

951 matches found

CVE-2026-9346

A flaw has been found in Edimax EW-7438RPn up to 1.31. This impacts the function formWirelessTbl of the file /goform/formWirelessTbl of the component webs. Executing a manipulation of the argument submit-url can lead to buffer overflow. The attack may be performed from remote. The exploit has bee...

9CVSS7.5AI score0.00048EPSS

Exploits0References1

RedhatCVE•added 2026/05/28 2:15 p.m.•7 views

CVE-2026-9436

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setL2tpServerCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack can be...

10CVSS7AI score0.01317EPSS

Exploits0References1

RedhatCVE•added 2026/05/26 8:14 p.m.•10 views

CVE-2026-9463

A flaw has been found in Edimax EW-7438RPn 1.31. Affected by this issue is the function formLicence of the file /goform/formLicence. This manipulation of the argument submit-url causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been published and may be use...

9CVSS7.8AI score0.00046EPSS

Exploits0References1

EUVD•added 2026/05/26 5:30 a.m.•8 views

EUVD-2026-31796

A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument PIN can lead to os command injection. It is possible to launch the attack remotely. The...

6.5CVSS6.4AI score0.04841EPSS

Exploits0References5

EUVD•added 2026/05/25 2:15 p.m.•8 views

EUVD-2026-31695

A vulnerability was found in Tiandy Easy7 Integrated Management Platform 7.17.0. This vulnerability affects unknown code of the file /Easy7/apps/WebService/GetDBDataEx.jsp. Performing a manipulation of the argument strTBName results in sql injection. Remote exploitation of the attack is possible...

7.5CVSS6.8AI score0.00037EPSS

Exploits0References4

EUVD•added 2026/05/25 1:45 p.m.•7 views

EUVD-2026-31681

9CVSS7.8AI score0.00046EPSS

Exploits0References4

ATTACKERKB•added 2026/05/25 1:45 p.m.•5 views

CVE-2026-9463

9CVSS7.8AI score0.00046EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/25 1:45 p.m.•27 views

CVE-2026-9463 Edimax EW-7438RPn formLicence stack-based overflow

9CVSS0.00046EPSS

Exploits0References4

NVD•added 2026/05/25 1:16 p.m.•6 views

CVE-2026-9454

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setOpenVpnCertGenerationCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument servername can lead to os command injection. The...

10CVSS0.01254EPSS

Exploits0References5

ATTACKERKB•added 2026/05/25 7:0 a.m.•6 views

CVE-2026-9436

10CVSS7AI score0.01317EPSS

Exploits0References6Affected Software1

EUVD•added 2026/05/25 4:45 a.m.•10 views

EUVD-2026-31631

A flaw has been found in Edimax EW-7438RPn 1.31. This impacts the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component webs. This manipulation of the argument selSSID/submit-url causes stack-based buffer overflow. The attack is possible to be carried out remotely. The...

9CVSS7.8AI score0.00046EPSS

Exploits0References4

Positive Technologies•added 2026/05/25 12:0 a.m.•8 views

PT-2026-43042

A flaw has been found in Totolink A8000RU 7.1cu.643 b20200521. This vulnerability affects the function setOpenVpnCertGenerationCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument servername can lead to os command injection. The...

10CVSS7AI score0.01254EPSS

Exploits0References5

ATTACKERKB•added 2026/05/24 10:0 p.m.•8 views

CVE-2026-9400

A flaw has been found in Edimax BR-6675nD 1.12. This issue affects the function formUSBStorage of the file /goform/formUSBStorage of the component POST Request Handler. Executing a manipulation of the argument subdir can lead to command injection. It is possible to launch the attack remotely. The...

6.5CVSS5.6AI score0.01409EPSS

Exploits0References4Affected Software1

NVD•added 2026/05/24 11:16 a.m.•8 views

CVE-2026-9372

A flaw has been found in ItzCrazyKns Vane up to 1.12.1. This vulnerability affects unknown code of the file src/app/api/providers/route.ts of the component Model Provider API. This manipulation of the argument baseURL causes server-side request forgery. Remote exploitation of the attack is...

7.5CVSS0.00053EPSS

Exploits0References5

ATTACKERKB•added 2026/05/24 10:0 a.m.•6 views

CVE-2026-9372

7.5CVSS6.7AI score0.00053EPSS

Exploits0References5Affected Software1

EUVD•added 2026/05/24 10:0 a.m.•6 views

EUVD-2026-31586

7.5CVSS6.7AI score0.00053EPSS

Exploits0References5

Vulnrichment•added 2026/05/24 12:30 a.m.•4 views

CVE-2026-9346 Edimax EW-7438RPn webs formWirelessTbl buffer overflow

9CVSS6AI score0.00048EPSS

Exploits0References5

EUVD•added 2026/05/24 12:30 a.m.•7 views

EUVD-2026-31559

9CVSS7.5AI score0.00048EPSS

Exploits0References5

Positive Technologies•added 2026/05/24 12:0 a.m.•8 views

PT-2026-42933

7.5CVSS6.7AI score0.00053EPSS

Exploits0References5

Positive Technologies•added 2026/05/24 12:0 a.m.•8 views

PT-2026-42924

A flaw has been found in projectworlds Online Art Gallery Shop 1.0. Impacted is an unknown function of the file /admin/adminHome.php. Executing a manipulation of the argument social linked can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be us...

7.5CVSS6.9AI score0.00037EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by