Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2026/04/27 6:45 a.m.24 views

CVE-2026-7096 Tenda HG3 formgponConf os command injection

A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgponloid results in os command injection. It is possible to launch the attack remotely. The exploit has...

9CVSS0.04075EPSS
Exploits1References5
CVE
CVEadded 2026/04/27 6:45 a.m.14 views

CVE-2026-7096

The CVE-2026-7096 entry concerns Tenda HG3 (2.0 300003070) where the vulnerable component is formgponConf under /boaform/admin/formgponConf. The root cause is manipulation of the fmgpon_loid parameter leading to an OS command injection, with a network-exposed (remote) attack surface and a high im...

9CVSS7.8AI score0.04075EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/04/27 12:0 a.m.7 views

PT-2026-35365

A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgpon loid results in os command injection. It is possible to launch the attack remotely. The exploit has...

9CVSS7.8AI score0.04075EPSS
Exploits1References6
OSV
OSVadded 2026/02/22 2:16 a.m.2 views

CVE-2026-2907

A weakness has been identified in Tenda HG9 300001138. Affected by this vulnerability is an unknown functionality of the file /boaform/formgponConf of the component GPON Configuration Endpoint. This manipulation of the argument fmgponloid/fmgponloidpassword causes stack-based buffer overflow...

8.8CVSS6.2AI score0.00556EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2026/02/22 12:0 a.m.4 views

PT-2026-21408

Name of the Vulnerable Software and Affected Versions Tenda HG9 300001138 affected versions not specified Description A flaw exists in Tenda HG9 300001138 within the GPON Configuration Endpoint. The issue relates to the manipulation of the fmgpon loid/fmgpon loid password argument in the...

9CVSS7.6AI score0.00556EPSS
Exploits1References12
Positive Technologies
Positive Technologiesadded 2019/03/17 12:0 a.m.6 views

PT-2019-18569 · Raisecom · Raisecom Iscom Ht803G Gpon +2

Name of the Vulnerable Software and Affected Versions: Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with firmware version ISCOMHT803G-U 2.0.0 140521 R4.1.47.002 or below Description: An authenticated shell command injection issue has been discovered. The fmgpon loid...

7.8CVSS8AI score0.03506EPSS
Exploits3References6
CNVD
CNVDadded 2019/02/27 12:0 a.m.3 views

Raisecom Technology GPON-ONU HT803G-07 Command Injection Vulnerability

Raisecom Technology is a supplier of access equipment, solutions and services. A command injection vulnerability exists in the 'fmgponloid' parameter in the Raisecom Technology GPON-ONU HT803G-07. An attacker could exploit this vulnerability to execute code...

7.8CVSS7.8AI score0.03506EPSS
Exploits3References1
Rows per page
Query Builder