Lucene search
K

44 matches found

NVD
NVD
added 2026/06/23 11:16 p.m.9 views

CVE-2026-54588

Poweradmin is a web-based DNS administration tool for PowerDNS server. Versions prior to 4.2.4 and 4.3.3 use the attacker-controlled HTTPHOST request header as the authoritative source for building callback URLs in its OIDC, SAML, and logout authentication flows without any validation. An...

9.6CVSS0.00312EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/04 1:30 a.m.6 views

CVE-2026-7719 Totolink WA300 POST Request cstecgi.cgi loginauth buffer overflow

A security flaw has been discovered in Totolink WA300 5.2cu.7112B20190227. The affected element is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument httphost results in buffer overflow. The attack may be launched...

10CVSS7.8AI score0.00619EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-3662

Malware in sbrugna...

4.3CVSS6AI score0.01801EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-40870

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00817EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-35310

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.06071EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-40308

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00701EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:26 a.m.5 views

CVE-2024-42547

TOTOLINK A3100R V4.1.2cu.5050B20200504 has a buffer overflow vulnerability in the httphost parameter in the loginauth function...

9.8CVSS7.4AI score0.00629EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:3 a.m.7 views

CVE-2023-36950

TOTOLINK X5000R V9.1.0u.6118B20201102 and TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow via the httphost parameter in the function loginAuth...

9.8CVSS7.8AI score0.00817EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 4:0 a.m.6 views

CVE-2023-36340

TOTOLINK NR1800X V9.1.0u.6279B20210910 was discovered to contain a stack overflow via the httphost parameter in the function loginAuth...

9.8CVSS7.9AI score0.00701EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 9:35 p.m.5 views

CVE-2021-43682

thinkphp-bjyblog last update Jun 4 2021 is affected by a Cross Site Scripting XSS vulnerability in AdminBaseController.class.php. The exit function terminates the script and prints a message to the user that contains $SERVER'HTTPHOST'...

6.1CVSS5.9AI score0.00555EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/13 11:25 p.m.13 views

CVE-2024-35387

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a stack overflow via the httphost parameter in the function loginAuth...

9.8CVSS7.8AI score0.06071EPSS
Exploits0References3
NVD
NVD
added 2024/08/12 7:15 p.m.19 views

CVE-2024-42547

TOTOLINK A3100R V4.1.2cu.5050B20200504 has a buffer overflow vulnerability in the httphost parameter in the loginauth function...

9.8CVSS0.00629EPSS
Exploits1References1
NVD
NVD
added 2024/08/12 6:15 p.m.16 views

CVE-2024-42543

TOTOLINK A3700R v9.1.2u.5822B20200513 has a buffer overflow vulnerability in the httphost parameter in the loginauth function...

9.8CVSS0.00663EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/08/12 12:0 a.m.18 views

CVE-2024-42547

TOTOLINK A3100R V4.1.2cu.5050B20200504 has a buffer overflow vulnerability in the httphost parameter in the loginauth function...

9.8AI score0.00629EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/08/12 12:0 a.m.20 views

CVE-2024-42543

TOTOLINK A3700R v9.1.2u.5822B20200513 has a buffer overflow vulnerability in the httphost parameter in the loginauth function...

9.8AI score0.00663EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/08/12 12:0 a.m.4 views

TOTOLINK A3100R 安全漏洞

TOTOLINK A3100R is a series of wireless routers from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3100R version V4.1.2cu.5050B20200504, which originates from a failure to correctly validate the length of the input data in the httphost parameter of the...

9.8CVSS8.1AI score0.00629EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/12 12:0 a.m.17 views

CVE-2024-42547

TOTOLINK A3100R V4.1.2cu.5050B20200504 has a buffer overflow vulnerability in the httphost parameter in the loginauth function...

0.00629EPSS
Exploits1References1
CVE
CVE
added 2024/08/12 12:0 a.m.56 views

CVE-2024-42543

TOTOLINK A3700R vulnerable to a buffer overflow in the http_host parameter of the loginauth function (v9.1.2u.5822_B20200513). Exploitation could allow remote code execution or denial of service; multiple sources (CNVD/CNNVD/Red Hat NVD) describe the same issue. No fix/version is specified in the...

9.8CVSS7.5AI score0.00663EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2024/08/01 12:0 a.m.4 views

TOTOLINK EX200 安全漏洞

The TOTOLINK EX200 is a 2.4G wireless N range extender designed to extend the coverage of existing Wi-Fi networks. A buffer overflow vulnerability exists in the TOTOLINK EX200. The vulnerability originates from the function loginauth in the /cgi-bin/cstecgi.cgi file, which operates on the paramet...

9CVSS7.3AI score0.0127EPSS
Exploits1References5
NVD
NVD
added 2024/05/24 6:15 p.m.14 views

CVE-2024-35387

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a stack overflow via the httphost parameter in the function loginAuth...

9.8CVSS7.5AI score0.06071EPSS
Exploits0References1
Rows per page
Query Builder