Lucene search
K

54838 matches found

CNNVD
CNNVD
added 2025/12/11 12:0 a.m.4 views

Ruijie X60 PRO 安全漏洞

Ruijie X60 PRO is a home wireless router from China Ruijie Ruijie. A security vulnerability exists in Ruijie X60 PRO X6010212014RG-X60 PRO version V1.00V2.00, which originates from improper handling of a specially crafted POST request for moduleset in the file...

8.8CVSS7AI score0.02308EPSS
Exploits1References3
EUVD
EUVD
added 2025/12/11 12:0 a.m.4 views

EUVD-2025-202746

OS Command Injection vulnerability in Ruijie RG-EW1200 EW3.01B11P227EW120011130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

7.3AI score0.02554EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.5 views

PT-2025-50682

Name of the Vulnerable Software and Affected Versions Ruijie M18 EW 3.01B11P226 M18 10223116 Description An issue exists that allows attackers to execute arbitrary commands. This can be achieved by sending a specially crafted POST request to the module set component within the file...

8.8CVSS7AI score0.02244EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.3 views

CVE-2025-56092

OS Command Injection vulnerability in Ruijie X30 PRO V1 X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

7.5AI score0.02627EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.11 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991125)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991125 advisory. In the Linux kernel, the following vulnerability has been resolved: Input: i8042 - fix leaking of platform device on module removal Avoid resetting the module-wide...

5.5CVSS6AI score0.00177EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991132)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991132 advisory. In the Linux kernel, the following vulnerability has been resolved: dm ioctl: fix misbehavior if listversions races with module loading listversions will first...

4.7CVSS6.5AI score0.00131EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.4 views

Ruijie X30 PRO 安全漏洞

Ruijie X30 PRO is a home wireless router from Ruijie China. A security vulnerability exists in the Ruijie X30 PRO X30-PRO-V109241521 version, which stems from improper handling of a specially crafted POST request for moduleset in the file /usr/local/lua/devsta/nbrcwmp.lua, which could lead to the...

8.8CVSS6.9AI score0.02666EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.4 views

hfly 安全漏洞

hfly is a travel website by baowzh individual developer. A security vulnerability exists in hfly, which originates from a flaw in the file /admin/index.php/advtext/add of the component advtext Module, which could lead to a cross-site scripting attack...

5.4CVSS4.4AI score0.00217EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.9 views

PT-2025-50684

Name of the Vulnerable Software and Affected Versions Ruijie X60 PRO versions V1.00 through V2.00 Description An OS Command Injection issue exists in Ruijie X60 PRO. Attackers can execute arbitrary commands by sending a specially crafted POST request to the module set function within the...

8.8CVSS7.5AI score0.02244EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.4 views

FreePBX 操作系统命令注入漏洞

FreePBX formerly known as Asterisk Management Portal is a suite of tools for configuring Asterisk an IP telephony system via a GUI web-based graphical interface from the FreePBX project. An operating system command injection vulnerability exists in FreePBX version 16, which stems from remote code...

8.8CVSS8.5AI score0.03118EPSS
Exploits1References4
EUVD
EUVD
added 2025/12/11 12:0 a.m.5 views

EUVD-2025-202742

OS Command Injection vulnerability in Ruijie M18 EW3.01B11P226M1810223116 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.3AI score0.02482EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.21 views

CVE-2025-56120

OS Command Injection vulnerability in Ruijie X60 PRO X6010212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

0.02308EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.7 views

PT-2025-50683

Name of the Vulnerable Software and Affected Versions Ruijie X30-PRO version X30-PRO-V1 09241521 Description An issue exists in Ruijie X30-PRO version X30-PRO-V1 09241521 that allows attackers to execute arbitrary commands. This is possible through a crafted POST request to the module set paramet...

8.8CVSS7AI score0.02666EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.6 views

PT-2025-50681

Name of the Vulnerable Software and Affected Versions Ruijie RG-YST EST, YSTAP 3.01B11P280YST250F versions V1.xxV2.xx Description An OS Command Injection issue exists in Ruijie RG-YST EST, YSTAP 3.01B11P280YST250F. Successful exploitation allows attackers to execute arbitrary commands. This is...

8.8CVSS7.3AI score0.01451EPSS
Exploits0References6
Photon
Photon
added 2025/12/11 12:0 a.m.3 views

Important Photon OS Security Update - PHSA-2025-5.0-0710

Updates of 'Linux-PAM', 'httpd' packages of Photon OS have been released...

7.8CVSS7.1AI score0.0039EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991122)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991122 advisory. In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Fix potential crash on module unload The vmbus driver relies on the panic...

5.5CVSS5.9AI score0.00235EPSS
Exploits0References4
CVE
CVE
added 2025/12/10 10:43 p.m.19 views

CVE-2025-67513

CVE-2025-67513 affects FreePBX Endpoint Manager (module for managing telephony endpoints in FreePBX). Versions prior to 16.0.96 and 17.0.1 through 17.0.9 use a weak default 6‑digit app_password, which can be brute-forced. Depending on local configuration, this password could grant access to the e...

6.9CVSS6.2AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2025/12/10 9:16 p.m.8 views

CVE-2025-65950

WBCE CMS is a content management system. In versions 1.6.4 and below, the user management module allows a low-privileged authenticated user with permissions to modify users to execute arbitrary SQL queries. This can be escalated to a full database compromise, data exfiltration, effectively...

9.4CVSS0.00462EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2025/12/10 2:32 a.m.5 views

CVE-2025-42880

Due to missing input sanitation, SAP Solution Manager allows an authenticated attacker to insert malicious code when calling a remote-enabled function module. This could provide the attacker with full control of the system hence leading to high impact on confidentiality, integrity and availabilit...

9.9CVSS6.7AI score0.03895EPSS
Exploits0References1
CNVD
CNVD
added 2025/12/10 12:0 a.m.4 views

Huawei HarmonyOS Competitive Conditions Vulnerability

Huawei HarmonyOS is a distributed operating system developed independently by Huawei Technologies Co. Huawei HarmonyOS suffers from a competitive condition vulnerability, which originates from a competitive condition vulnerability in the audio module, and can be exploited by an attacker to affect...

6.7CVSS6.7AI score0.00059EPSS
Exploits0References1
Rows per page
Query Builder