Lucene search
K

220932 matches found

Cvelist
Cvelist
added 2026/05/24 11:30 p.m.25 views

CVE-2026-9406 Totolink A8000RU Web Management cstecgi.cgi setRemoteCfg os command injection

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. Affected is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed...

10CVSS0.01732EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/24 11:30 p.m.14 views

EUVD-2026-31606

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. Affected is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed...

10CVSS7AI score0.01732EPSS
Exploits0References5
CVE
CVE
added 2026/05/24 11:30 p.m.20 views

CVE-2026-9406

Totolink A8000RU Web Management (7.1cu.643_b20200521) is affected by CVE-2026-9406 due to a flaw in the setRemoteCfg function in /cgi-bin/cstecgi.cgi. Manipulation of the enable argument allows os command injection, with remote access. The CVE is supported by public exploit availability and PoC m...

10CVSS7AI score0.01732EPSS
Exploits0References5
NVD
NVD
added 2026/05/24 11:16 p.m.17 views

CVE-2026-9401

A vulnerability has been found in Edimax BR-6675nD 1.12. Impacted is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. The manipulation of the argument pppUserName leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS0.00445EPSS
Exploits0References4
NVD
NVD
added 2026/05/24 11:16 p.m.16 views

CVE-2026-9400

A flaw has been found in Edimax BR-6675nD 1.12. This issue affects the function formUSBStorage of the file /goform/formUSBStorage of the component POST Request Handler. Executing a manipulation of the argument subdir can lead to command injection. It is possible to launch the attack remotely. The...

6.5CVSS0.01158EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/24 11:0 p.m.13 views

EUVD-2026-31607

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This affects the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument provider leads to os command injection. The attack may be launched remotely. Th...

10CVSS7.1AI score0.01732EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/24 11:0 p.m.14 views

CVE-2026-9404

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This affects the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument provider leads to os command injection. The attack may be launched remotely. Th...

10CVSS5.7AI score0.01732EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/24 11:0 p.m.9 views

CVE-2026-9404 Totolink A8000RU Web Management cstecgi.cgi setDdnsCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This affects the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument provider leads to os command injection. The attack may be launched remotely. Th...

10CVSS5.7AI score0.01732EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/24 10:45 p.m.11 views

EUVD-2026-31605

A vulnerability was determined in Edimax BR-6675nD 1.12. The impacted element is the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component POST Request Handler. This manipulation of the argument selSSID causes buffer overflow. The attack may be initiated remotely. The...

9CVSS7.7AI score0.00445EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/05/24 10:36 p.m.90 views

Exploit for CVE-2026-29923

CVE-2026-29923 — pstrip64.sys Local Privilege Escalation A mi...

7.8CVSS6AI score0.00107EPSS
Exploits1
EUVD
EUVD
added 2026/05/24 10:30 p.m.13 views

EUVD-2026-31602

A vulnerability was found in Edimax BR-6675nD 1.12. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component POST Request Handler. The manipulation of the argument...

6.5CVSS6.4AI score0.01158EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/24 10:30 p.m.12 views

CVE-2026-9402

A vulnerability was found in Edimax BR-6675nD 1.12. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component POST Request Handler. The manipulation of the argument...

6.5CVSS5.6AI score0.01158EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/05/24 10:30 p.m.15 views

CVE-2026-9402 Edimax BR-6675nD POST Request formWlanMP command injection

A vulnerability was found in Edimax BR-6675nD 1.12. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component POST Request Handler. The manipulation of the argument...

6.5CVSS0.01158EPSS
Exploits0References4
NVD
NVD
added 2026/05/24 10:16 p.m.20 views

CVE-2026-9399

A vulnerability was detected in Edimax BR-6675nD 1.12. This vulnerability affects the function formsetPPPoE of the file /goform/formsetPPPoE of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in buffer overflow. It is possible to initiate the atta...

9CVSS0.00445EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/24 10:15 p.m.18 views

CVE-2026-9401 Edimax BR-6675nD POST Request formWanTcpipSetup buffer overflow

A vulnerability has been found in Edimax BR-6675nD 1.12. Impacted is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. The manipulation of the argument pppUserName leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS0.00445EPSS
Exploits0References4
CVE
CVE
added 2026/05/24 10:15 p.m.17 views

CVE-2026-9401

CVE-2026-9401 affects Edimax BR-6675nD (firmware 1.12) in the POST request handler, specifically the function formWanTcpipSetup in the file /goform/formWanTcpipSetup. The vulnerability arises from how the argument pppUserName is manipulated, causing a buffer overflow . Exploitation can be perform...

9CVSS7.8AI score0.00445EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/24 10:15 p.m.12 views

EUVD-2026-31604

A vulnerability has been found in Edimax BR-6675nD 1.12. Impacted is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. The manipulation of the argument pppUserName leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS7.8AI score0.00445EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/24 10:0 p.m.13 views

CVE-2026-9400

A flaw has been found in Edimax BR-6675nD 1.12. This issue affects the function formUSBStorage of the file /goform/formUSBStorage of the component POST Request Handler. Executing a manipulation of the argument subdir can lead to command injection. It is possible to launch the attack remotely. The...

6.5CVSS5.6AI score0.01158EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/05/24 10:0 p.m.22 views

CVE-2026-9400

Edimax BR-6675nD (firmware 1.12) is affected by a command-injection in the POST Request Handler’s formUSBStorage function (/goform/formUSBStorage). By manipulating the sub_dir parameter, an attacker can execute arbitrary commands remotely. The CVE description consistently notes a remote attack po...

6.5CVSS6.4AI score0.01158EPSS
Exploits0References4
NVD
NVD
added 2026/05/24 9:16 p.m.17 views

CVE-2026-9396

A security flaw has been discovered in Besen BS20 EV Charging Station up to 20260426. Affected by this vulnerability is an unknown functionality of the component Firmware Version Check. The manipulation results in improper restriction of rendered ui layers. The attack can be executed remotely. A...

6.3CVSS0.00268EPSS
Exploits0References4
Rows per page
Query Builder