Lucene search
K

365 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-39194

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.01099EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-28597

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00371EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-13616

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.01905EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28379

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00213EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-43431

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.0073EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-33337

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0203EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/11 3:19 a.m.11 views

CVE-2025-10123

A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub415028 of the file /goform/setstaticleases. Executing manipulation of the argument Hostname can lead to command injection. The attack can be launched remotely. The exploit has been...

9.8CVSS7.5AI score0.03986EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/09/09 12:0 a.m.6 views

PT-2025-36565

Name of the Vulnerable Software and Affected Versions: D-Link DIR-823X versions up to 250416 Description: A vulnerability exists in D-Link DIR-823X routers that allows for remote command injection. The vulnerability is located in the sub 415028 function of the /goform/set static leases file...

7.5CVSS7.4AI score0.03986EPSS
Exploits1References15
RedhatCVE
RedhatCVE
added 2025/08/30 6:21 p.m.4 views

CVE-2025-50976

IPFire 2.29 DNS management interface dns.cgi fails to properly sanitize user-supplied input in the NAMESERVER, REMARK, and TLSHOSTNAME query parameters, resulting in a reflected cross-site scripting XSS vulnerability...

6.1CVSS6AI score0.00213EPSS
Exploits1References1
NVD
NVD
added 2025/08/29 2:15 a.m.5 views

CVE-2025-9603

A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The...

9.8CVSS0.07575EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/08/29 1:32 a.m.10 views

CVE-2025-9603 Telesquare TLR-2005KSH internet.cgi command injection

A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The...

6.5CVSS0.07575EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/08/29 12:0 a.m.3 views

Telesquare TLR-2005Ksh 安全漏洞

The Telesquare TLR-2005Ksh is a wireless router from the South Korean company Telesquare. A security vulnerability exists in Telesquare TLR-2005Ksh version 1.2.4, which originates from a command injection attack due to misuse of the parameter Hostname in the file /cgi-bin/internet.cgi...

9.8CVSS6.8AI score0.07575EPSS
Exploits1References5
NVD
NVD
added 2025/08/26 6:15 p.m.5 views

CVE-2025-50976

IPFire 2.29 DNS management interface dns.cgi fails to properly sanitize user-supplied input in the NAMESERVER, REMARK, and TLSHOSTNAME query parameters, resulting in a reflected cross-site scripting XSS vulnerability...

6.1CVSS0.00213EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/08/26 12:0 a.m.8 views

CVE-2025-50976

IPFire 2.29 DNS management interface dns.cgi fails to properly sanitize user-supplied input in the NAMESERVER, REMARK, and TLSHOSTNAME query parameters, resulting in a reflected cross-site scripting XSS vulnerability...

0.00213EPSS
Exploits1References1
CVE
CVE
added 2025/08/26 12:0 a.m.17 views

CVE-2025-50976

IPFire 2.29 DNS management interface (dns.cgi) is affected by a reflected XSS due to insufficient sanitization of user input in the NAMESERVER, REMARK, and TLS_HOSTNAME query parameters. The root cause is improper input handling in dns.cgi, enabling reflected XSS payloads. Documented impact is li...

6.1CVSS5.7AI score0.00213EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.5 views

PT-2025-34800 · Ipfire · Ipfire

Name of the Vulnerable Software and Affected Versions: IPFire version 2.29 Description: The DNS management interface dns.cgi in IPFire fails to properly sanitize user-supplied input in the NAMESERVER, REMARK, and TLS HOSTNAME query parameters. This results in a reflected cross-site scripting XSS...

6.1CVSS6.1AI score0.00213EPSS
Exploits1References6
CNVD
CNVD
added 2025/08/25 12:0 a.m.2 views

TOTOLINK A3002R hostname parameter buffer overflow vulnerability

The TOTOLINK A3002R is a wireless router manufactured by China's Gion Electronics TOTOLINK, whose main function is to provide wireless network connectivity for home or small office environments. The TOTOLINK A3002R suffers from a buffer overflow vulnerability that originates in the hostname...

7.5CVSS7.4AI score0.00371EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/20 12:19 a.m.14 views

CVE-2025-55587

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the hostname parameter at /boafrm/formMapDelDevice. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

7.5CVSS7.8AI score0.00371EPSS
Exploits1References1
OSV
OSV
added 2025/08/18 8:15 p.m.2 views

CVE-2025-55587

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the hostname parameter at /boafrm/formMapDelDevice. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

7.5CVSS6.1AI score0.00371EPSS
Exploits1References1
NVD
NVD
added 2025/08/18 8:15 p.m.5 views

CVE-2025-55587

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the hostname parameter at /boafrm/formMapDelDevice. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

7.5CVSS0.00371EPSS
Exploits1References1
Rows per page
Query Builder