CVE-2026-2616

A vulnerability has been found in Beetel 777VR1 up to 01.00.09. The impacted element is an unknown function of the component Web Management Interface. The manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the...

CVE-2021-22351

There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may induce users to grant permissions on modifying items in the configuration table,causing system exceptions...

CVE-1999-0792

ROUTERmate has a default SNMP community name which allows remote attackers to modify its configuration...

CVE-2025-64057

Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store files in arbitrary locations and potentially modify the system configuration or other unspecified impacts...

PHOENIX CONTACT FL SWITCH 跨站脚本漏洞

PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT. A cross-site scripting vulnerability exists in Phoenix Contact FL SWITCH versions prior to 3.50, which can be exploited by an unauthenticated, remote attacker to trick an authenticated user into clicking on a...

EUVD-2025-201414

Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store files in arbitrary locations and potentially modify the system configuration or other unspecified impacts...

CVE-2025-64057

Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store files in arbitrary locations and potentially modify the system configuration or other unspecified impacts...

CVE-2025-64057

Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store files in arbitrary locations and potentially modify the system configuration or other unspecified impacts...

CVE-2025-64057

Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store files in arbitrary locations and potentially modify the system configuration or other unspecified impacts...

EUVD-2025-199891

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config a...

PT-2025-47389

Name of the Vulnerable Software and Affected Versions AOS-CX OS affected versions not specified Description A flaw exists in the web management interface of the AOS-CX OS user authentication service. An authenticated remote attacker may be able to hijack an active user session. Successful...

Malicious code in pulsar-crust-acamar-technosignature (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca5355cbd68aac1da711412886e7e3a77b66c193fddd4cfb2ff2a0ed9e7726b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in double-uglify-long-static-cron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86cbddf969fda2c0a80a2252a875d61720e0aa7aa2b2a5725fd102e01d1f0c6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185922 Malicious code in buffer-mocha-astrophysics-technosignature (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c19bdb6e5591367013f268343f1513dad33fc681f85b2aef30be47ec269cb5a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in manu-oyi-gioafisoi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e948acc55ead6175abd00658e2d85ccc65c79f1940193cbcb0069b08771f731e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in @akunsansan0/karedok15 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f88034de893bc9831247c92fd60ecd6f80da68ce75da00ad686e4985e80dc62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nokire-tanjiro30 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2cac06d8612ca64fbec5f7cc01f0264b1b132694fcb6c894a5b2628e9475789f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miftah-miftah15 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b29026f76a5dbd0897dc49c881194ea8ee2fdb4222613ba76bd871bc19924693 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-177008 Malicious code in nuyar-adadar-baidt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff7703b3ca664f377c54de4bc52282ba3607fe52fdee646aae90028a8670f04f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nuilva-dakdre-aodoanfa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad5aa6f0b089df28367ad39f3e348d36e3f939e9e97e6ff026f1289e51d265b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...