CVE-2026-0409

A NETGEAR security issue that could allow an attacker with ability to intercept and tamper with traffic between the router and the Internet to run commands on your device when the device administrator performs certain specific management actions. This issue affects NETGEAR Orbi 370 series devices...

CVE-2026-0409

Summary: CVE-2026-0409 affects NETGEAR Orbi 370 series devices prior to version 12.1.2.7. A remote attacker who can intercept and tamper with traffic between the router and the Internet can trigger a remote command execution when the device administrator performs certain management actions. This ...

PT-2026-47814

Name of the Vulnerable Software and Affected Versions NETGEAR Orbi 370 series versions prior to V12.1.2.7 Description A security issue exists that allows an attacker capable of intercepting and tampering with traffic between the router and the Internet to execute commands on the device. This occu...

EUVD-2012-5765

Malware in sbrugna...

CVE-2025-53969

Cognex In-Sight Explorer and In-Sight Camera Firmware expose a service on TCP port 1069 that implements a proprietary protocol for management operations (e.g., network settings, user access). The issue can be exploited by adjacent attackers with low privileges and no authentication to access or m...

CVE-2012-5891

Multiple cross-site request forgery CSRF vulnerabilities in photo/pass.php in DAlbum 1.44 build 174 and earlier allow remote attackers to hijack the authentication of administrators for requests that 1 add a user via an add action, 2 change user passwords via a change action, or 3 delete a user v...

CVE-2024-7036

Affected software: open-webui/open-webui v0.3.8. Vulnerability: denial of service via an excessively long name field during signup, causing the Admin panel to become unresponsive. Impact: prevents admin user management actions (delete/edit/add users); can be exploited by unauthenticated users or ...

Multilaser RE160V Header Manipulation Access Bypass

[email protected] Status: RO Content-Length: 5433 Lines: 153 =====Tempest Security Intelligence - Security Advisory - CVE-2023-38944======= Access Control Bypass in Multilaser routers' Web Management Interface Author: Vinicius Moraes =====Table of...

ntopng 1.2.0 - XSS Injection

No description provided by source. ntopng 1.2.0 XSS injection using monitored network traffic ntopng is the next generation version of the original ntop, a network traffic probe and monitor that shows the network usage, similar to what the popular top Unix command does. The web-based frontend of...

ntopng 1.2.0 - XSS Vulnerability

ntopng version 1.2.0 suffers from a cross site scripting vulnerability using monitored network traffic. ntopng 1.2.0 XSS injection using monitored network traffic ntopng is the next generation version of the original ntop, a network traffic probe and monitor that shows the network usage, similar ...