Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3609 matches found

CVE
CVEadded 2025/07/12 6:2 a.m.19 views

CVE-2025-7463

The CVE-2025-7463 entry describes a buffer overflow in Tenda FH1201 1.2.0.14. Affects the HTTP POST Request Handler function formWrlsafeset, via manipulation of the mit_ssid argument in /goform/AdvSetWrlsafeset. Exploitation is remote and the vulnerability has been publicly disclosed. Connected s...

9CVSS7.3AI score0.01103EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2025/07/11 10:15 p.m.4 views

CVE-2025-7460

A vulnerability has been found in TOTOLINK T6 4.1.5cu.748B20211015 and classified as critical. Affected by this vulnerability is the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

9CVSS0.01357EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2025/07/11 9:32 p.m.2 views

CVE-2025-7460 TOTOLINK T6 HTTP POST Request cstecgi.cgi setWiFiAclRules buffer overflow

A vulnerability has been found in TOTOLINK T6 4.1.5cu.748B20211015 and classified as critical. Affected by this vulnerability is the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

9CVSS7.3AI score0.01357EPSS
Exploits1References6
CVE
CVEadded 2025/07/11 9:32 p.m.22 views

CVE-2025-7460

CVE-2025-7460 affects TOTOLINK T6 firmware 4.1.5cu.748_B20211015. The vulnerable component is the HTTP POST Request Handler at /cgi-bin/cstecgi.cgi, in the function setWiFiAclRules, where manipulating the argument mac leads to a buffer overflow. The issue can be exploited remotely and public expl...

9CVSS8.9AI score0.01357EPSS
Exploits1References6Affected Software1
Cvelist
Cvelistadded 2025/07/11 9:32 p.m.6 views

CVE-2025-7460 TOTOLINK T6 HTTP POST Request cstecgi.cgi setWiFiAclRules buffer overflow

A vulnerability has been found in TOTOLINK T6 4.1.5cu.748B20211015 and classified as critical. Affected by this vulnerability is the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

9CVSS0.01357EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2025/07/09 12:0 a.m.1 views

PT-2025-29367 · Totolink · Totolink T6

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 B20211015 Description: A critical vulnerability exists in the HTTP POST Request Handler component of the affected software. The vulnerability is located in the setTracerouteCfg function within the...

8.8CVSS6.4AI score0.04474EPSS
Exploits1References14
Positive Technologies
Positive Technologiesadded 2025/07/08 12:0 a.m.2 views

PT-2025-29349 · Tenda · Tenda Fh451

Name of the Vulnerable Software and Affected Versions: Tenda FH451 version 1.0.0.9 Description: A critical vulnerability exists in Tenda FH451. The manipulation of the page argument in the frmL7ProtForm function within the HTTP POST Request Handler, located at the /goform/L7Prot endpoint, leads t...

9CVSS8.6AI score0.00885EPSS
Exploits1References13
Positive Technologies
Positive Technologiesadded 2025/07/07 12:0 a.m.1 views

PT-2025-29314 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: A critical vulnerability exists in the HTTP POST Request Handler component of the affected product. The fromSafeUrlFilter function within the /goform/fromSafeUrlFilter file is susceptible to a buffer...

9CVSS8.8AI score0.01103EPSS
Exploits1References13
Positive Technologies
Positive Technologiesadded 2025/07/07 12:0 a.m.1 views

PT-2025-29309 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: A critical vulnerability exists in the Tenda FH1201. The fromRouteStatic function within the HTTP POST Request Handler, located in the file /goform/fromRouteStatic, is susceptible to a buffer overflo...

9CVSS8.7AI score0.01103EPSS
Exploits1References14
Positive Technologies
Positive Technologiesadded 2025/07/06 12:0 a.m.2 views

PT-2025-29307 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: A critical vulnerability exists in the Tenda FH1201. The vulnerability affects the formWrlsafeset function within the /goform/AdvSetWrlsafeset file of the HTTP POST Request Handler component...

9CVSS8.8AI score0.01103EPSS
Exploits1References14
RedhatCVE
RedhatCVEadded 2025/07/04 9:24 a.m.5 views

CVE-2025-24334

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network Operator MNO internal RAN management network...

3.3CVSS6.4AI score0.00074EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/07/03 2:23 p.m.3 views

CVE-2025-6953

A vulnerability, which was classified as critical, was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is...

9CVSS7.5AI score0.01357EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/07/03 3:21 a.m.7 views

CVE-2025-6940

A vulnerability classified as critical was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected by this vulnerability is an unknown functionality of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflo...

9CVSS7.5AI score0.00766EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/07/03 2:22 a.m.6 views

CVE-2025-6939

A vulnerability classified as critical has been found in TOTOLINK A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/formWlSiteSurvey of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

9CVSS7.5AI score0.00538EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2025/07/03 12:0 a.m.4 views

DLink DIR-859 1.05 & 1.06B01 Path Traversal

The version of DLink installed on the remote host is prior to 1.07b03. It is, therefore, affected by a path traversal vulnerability as referenced in the vendor advisory. - A vulnerability was found in D-Link DIR-859 1.06B01. It has been rated as critical. Affected by this issue is some unknown...

9.8CVSS6.6AI score0.75239EPSS
Exploits1References3
NVD
NVDadded 2025/07/02 9:15 a.m.5 views

CVE-2025-24334

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network Operator MNO internal RAN management network...

3.3CVSS0.00074EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/07/02 8:34 a.m.4 views

CVE-2025-24334 The Nokia Single RAN baseband reveals its software version through the MNO internal RAN management network

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network Operator MNO internal RAN management network...

7.1AI score0.00074EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/07/02 8:34 a.m.6 views

CVE-2025-24334 The Nokia Single RAN baseband reveals its software version through the MNO internal RAN management network

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network Operator MNO internal RAN management network...

0.00074EPSS
Exploits0References1
NVD
NVDadded 2025/07/01 2:15 p.m.3 views

CVE-2025-6953

A vulnerability, which was classified as critical, was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is...

9CVSS0.01357EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2025/07/01 1:32 p.m.2 views

CVE-2025-6953 TOTOLINK A3002RU HTTP POST Request formParentControl buffer overflow

A vulnerability, which was classified as critical, was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is...

9CVSS7.4AI score0.01357EPSS
Exploits1References6
Rows per page
Query Builder