CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-28602

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.09438EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-50760

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00388EPSS

Exploits1References2

CNVD•added 2025/08/25 12:0 a.m.•1 views

TOTOLINK A3002R devicemac parameter command injection vulnerability

The TOTOLINK A3002R is a wireless router manufactured by China's Gion Electronics TOTOLINK, whose main function is to provide wireless network connectivity for home or small office environments. The TOTOLINK A3002R suffers from an OS command injection vulnerability, which stems from a command...

9.8CVSS8.2AI score0.09438EPSS

Exploits1References1

RedhatCVE•added 2025/08/20 12:19 a.m.•4 views

CVE-2025-55591

TOTOLINK-A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability in the devicemac parameter in the formMapDel endpoint...

9.8CVSS8.2AI score0.09438EPSS

Exploits1References1

OSV•added 2025/08/18 8:15 p.m.•0 views

CVE-2025-55591

TOTOLINK-A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability in the devicemac parameter in the formMapDel endpoint...

9.8CVSS5.8AI score0.09438EPSS

Exploits1References1

NVD•added 2025/08/18 8:15 p.m.•2 views

CVE-2025-55591

TOTOLINK-A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability in the devicemac parameter in the formMapDel endpoint...

9.8CVSS0.09438EPSS

Exploits1References1

Cvelist•added 2025/08/18 12:0 a.m.•4 views

CVE-2025-55591

TOTOLINK-A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability in the devicemac parameter in the formMapDel endpoint...

0.09438EPSS

Exploits1References1

CNNVD•added 2025/08/18 12:0 a.m.•1 views

TOTOLINK A3002R 安全漏洞

9.8CVSS8.1AI score0.09438EPSS

Exploits1References3

CVE•added 2025/08/18 12:0 a.m.•9 views

CVE-2025-55591

CVE-2025-55591 concerns TOTOLINK A3002R, specifically v4.0.0-B20230531.1404, which is reported to contain an OS command injection vulnerability in the devicemac parameter of the formMapDel endpoint. The root cause is an input handling flaw that allows an attacker to inject and execute arbitrary c...

9.8CVSS8.1AI score0.09438EPSS

Exploits1References1Affected Software1

CNVD•added 2025/07/28 12:0 a.m.•1 views

TOTOLINK X15 devicemac1 parameter buffer overflow vulnerability

TOTOLINK X15 is a network wireless extender manufactured by China's Gion Electronics TOTOLINK, mainly used to extend Wi-Fi coverage. The device supports Wi-Fi 6 technology and offers AX1500 wireless transmission rate for home and small office scenarios. A buffer overflow vulnerability exists in t...

9CVSS7.8AI score0.02306EPSS

Exploits1References1

OSV•added 2025/07/27 10:15 p.m.•0 views

CVE-2025-8243

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This issue affects some unknown processing of the file /boafrm/formMapDel of the component HTTP POST Request Handler. The manipulation of the argument devicemac1 leads to buffer overflow. The attack may be...

7.5CVSS6.5AI score

Exploits0References5

OSV•added 2025/06/03 6:15 p.m.•0 views

CVE-2025-5515

A vulnerability, which was classified as critical, has been found in TOTOLINK X2000R 1.0.0-B20230726.1108. Affected by this issue is some unknown functionality of the file /boafrm/formMapDel. The manipulation of the argument devicemac1 leads to command injection. The attack may be launched...

5.3CVSS5.6AI score0.04061EPSS

Exploits1References5

Vulnrichment•added 2025/06/03 5:31 p.m.•5 views

CVE-2025-5515 TOTOLINK X2000R formMapDel command injection

6.5CVSS7.3AI score0.04061EPSS

Exploits1References5

RedhatCVE•added 2025/05/23 3:59 a.m.•6 views

CVE-2023-46554

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMapDel...

9.8CVSS7.9AI score0.00388EPSS

Exploits1

OSV•added 2025/05/16 12:15 a.m.•1 views

CVE-2025-4730

A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. It has been rated as critical. Affected by this issue is some unknown functionality of the file /boafrm/formMapDel of the component HTTP POST Request Handler. The manipulation of the argument devicemac1 leads to buffer...

8.7CVSS7.8AI score0.00982EPSS

Exploits0References5

CNNVD•added 2025/05/15 12:0 a.m.•1 views

TOTOLINK A3002R和TOTOLINK A3002RU 安全漏洞

TOTOLINK A3002R and A3002RU are wireless router products under the TOTOLINK brand that support a wide range of network features and services. The TOTOLINK A3002R and A3002RU are vulnerable to a buffer overflow vulnerability that originates in the /boafrm/formMapDel file in the HTTP POST request...

9CVSS7.3AI score0.00982EPSS

Exploits0References1

OSV•added 2023/10/25 6:17 p.m.•0 views

CVE-2023-46554

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMapDel...

9.8CVSS5.8AI score0.00388EPSS

Exploits1References2

NVD•added 2023/10/25 6:17 p.m.•14 views

CVE-2023-46554

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMapDel...

9.8CVSS9.7AI score0.00388EPSS

Exploits1References2