Lucene search
K

54821 matches found

NVD
NVD
added 2025/12/11 7:15 p.m.11 views

CVE-2025-56098

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

8.8CVSS0.02244EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 7:15 p.m.11 views

CVE-2025-56097

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226EW1800GX-PRO10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

8.8CVSS0.02244EPSS
Exploits1References3
OSV
OSV
added 2025/12/11 7:15 p.m.9 views

CVE-2025-56098

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

8.8CVSS6.1AI score0.02244EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 6:16 p.m.5 views

CVE-2025-56089

OS Command Injection vulnerability in Ruijie M18 EW3.01B11P226M1810223116 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS0.02482EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 6:16 p.m.4 views

CVE-2025-56091

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226EW1800GX10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

8.8CVSS0.02627EPSS
Exploits1References3
OSV
OSV
added 2025/12/11 6:16 p.m.8 views

CVE-2025-56089

OS Command Injection vulnerability in Ruijie M18 EW3.01B11P226M1810223116 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS6.1AI score0.02482EPSS
Exploits1References3
OSV
OSV
added 2025/12/11 6:16 p.m.8 views

CVE-2025-56091

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226EW1800GX10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

8.8CVSS6.1AI score0.02627EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 6:16 p.m.3 views

CVE-2025-56077

OS Command Injection vulnerability in Ruijie RG-RAP2200E 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS0.02482EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 6:16 p.m.3 views

CVE-2025-56084

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226EW1800GX-PRO10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS0.0185EPSS
Exploits0References3
NVD
NVD
added 2025/12/11 6:16 p.m.6 views

CVE-2025-56083

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrnetworkIdmerge.lua...

8.8CVSS0.01748EPSS
Exploits0References3
NVD
NVD
added 2025/12/11 6:16 p.m.4 views

CVE-2025-56085

OS Command Injection vulnerability in Ruijie RG-EW1200 EW3.01B11P227EW120011130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

8.8CVSS0.02554EPSS
Exploits1References3
OSV
OSV
added 2025/12/11 6:16 p.m.8 views

CVE-2025-56077

OS Command Injection vulnerability in Ruijie RG-RAP2200E 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS6.1AI score0.02482EPSS
Exploits1References3
OSV
OSV
added 2025/12/11 6:16 p.m.10 views

CVE-2025-56083

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrnetworkIdmerge.lua...

8.8CVSS6.1AI score0.01748EPSS
Exploits0References3
NVD
NVD
added 2025/12/11 3:15 p.m.6 views

CVE-2025-14519

A security flaw has been discovered in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. This issue affects some unknown processing of the file /admin/index.php/advtext/add of the component advtext Module. The manipulation results in cross site scripting. The attack can be executed...

5.4CVSS0.00217EPSS
Exploits1References4
OSV
OSV
added 2025/12/11 3:15 p.m.4 views

CVE-2025-14519

A security flaw has been discovered in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. This issue affects some unknown processing of the file /admin/index.php/advtext/add of the component advtext Module. The manipulation results in cross site scripting. The attack can be executed...

5.4CVSS4AI score0.00217EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/11 3:2 p.m.4 views

CVE-2025-14519 baowzh hfly advtext add cross site scripting

A security flaw has been discovered in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. This issue affects some unknown processing of the file /admin/index.php/advtext/add of the component advtext Module. The manipulation results in cross site scripting. The attack can be executed...

5.1CVSS5AI score0.00217EPSS
Exploits1References4
EUVD
EUVD
added 2025/12/11 3:2 p.m.9 views

EUVD-2025-202698

A security flaw has been discovered in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. This issue affects some unknown processing of the file /admin/index.php/advtext/add of the component advtext Module. The manipulation results in cross site scripting. The attack can be executed...

5.1CVSS4.9AI score0.00217EPSS
Exploits1References5
CVE
CVE
added 2025/12/11 3:2 p.m.17 views

CVE-2025-14519

CVE-2025-14519 affects baowzh hfly 代表 version lineage prior to 638ff9abe9078bc977c132b37acbe1900b63491c, specifically the advtext Module’s /admin/index.php/advtext/add path. The root cause is cross-site scripting (XSS) in the processing of that file, enabling remote execution of the exploit. Publ...

5.4CVSS5AI score0.00217EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/12/11 3:2 p.m.31 views

CVE-2025-14519 baowzh hfly advtext add cross site scripting

A security flaw has been discovered in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. This issue affects some unknown processing of the file /admin/index.php/advtext/add of the component advtext Module. The manipulation results in cross site scripting. The attack can be executed...

5.1CVSS0.00217EPSS
Exploits1References4
Microsoft CVE
Microsoft CVE
added 2025/12/11 9:2 a.m.8 views

Apache HTTP Server: mod_md (ACME), unintended retry intervals

...

7.5CVSS7AI score0.00402EPSS
Exploits0
Rows per page
Query Builder