Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2026/04/27 8:15 p.m.5 views

CVE-2026-7155 Totolink A8000RU CGI cstecgi.cgi setLoginPasswordCfg os command injection

A security vulnerability has been detected in Totolink A8000RU 7.1cu.643b20200521. This impacts the function setLoginPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument admpass leads to os command injection. The attack may be initiated...

10CVSS8.2AI score0.01766EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/27 12:0 a.m.10 views

TOTOLINK A8000RU 命令注入漏洞

TOTOLINK A8000RU is a wireless router produced by TOTOLINK, a Chinese company. The TOTOLINK A8000RU 7.1cu.643b20200521 version contains a command injection vulnerability. This vulnerability stems from improper handling of parameters in the setLoginPasswordCfg function within the CGI Handler...

10CVSS7.3AI score0.01766EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/13 5:30 p.m.153 views

CVE-2026-6195 Totolink A7100RU CGI cstecgi.cgi setPasswordCfg os command injection

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313b20191024. Affected by this issue is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS0.14277EPSS
Exploits0References5
CVE
CVE
added 2026/04/10 1:15 a.m.18 views

CVE-2026-5997

CVE-2026-5997 affects Totolink A7100RU (firmware 7.4cu.2313_b20191024). The vulnerable element is the CGI handler function setLoginPasswordCfg in the file /cgi-bin/cstecgi.cgi . Manipulation of the argument admpass results in OS command injection , with remote execution possible. Public exploitat...

10CVSS7AI score0.01803EPSS
Exploits0References5
EUVD
EUVD
added 2026/02/05 4:13 p.m.6 views

EUVD-2020-31032

UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in its password configuration properties that allows local attackers to crash the application. Attackers can paste an overly long 300-character string into the password field to trigger an application crash and prevent normal...

6.7CVSS5.4AI score0.00229EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2022/06/17 1:2 a.m.6 views

0xsodium (>=0.2.0 <=0.14.0), 1password-config (=0.0.1) +11415 more potentially affected by CVE-2022-32210 via undici (>=4.9.3 <=5.4.0)

undici NPM version =4.9.3, =0.2.0, =1.0.0, =0.2.0, =0.4.0, =0.1.0, =0.0.1, =1.0.21, =2.1.0, =2.1.0, =2.1.0, =2.1.1 and more Source cves: CVE-2022-32210 Source advisory: OSV:GHSA-PGW7-WX7W-2W33...

6.5CVSS6.4AI score0.0044EPSS
Exploits1
Oracle linux
Oracle linux
added 2015/11/23 12:0 a.m.31 views

grub2 security, bug fix, and enhancement update

2.02-0.29.0.1 - Fix comparison in patch for 18504756 - Remove symlink to grub environment file during uninstall on EFI platforms bug 19231481 - update Oracle Linux certificates Alexey Petrenko - Put 'with' in menuentry instead of 'using' bug 18504756 - Use different titles for UEK and RHCK kernel...

2.6CVSS6.4AI score0.00335EPSS
Exploits0
Rows per page
Query Builder