CVE-2026-30140

An incorrect access control vulnerability exists in Tenda W15E V02.03.01.26cn. An unauthenticated attacker can access the /cgi-bin/DownloadCfg/RouterCfm.jpg endpoint to download the configuration file containing plaintext administrator credentials, leading to sensitive information disclosure and...

Tenda W15E 安全漏洞

The Tenda W15E is a wireless router produced by the Chinese company Tenda. The Tenda W15E V02.03.01.26cn version contains a security vulnerability. This vulnerability stems from improper access control, which may allow unverified attackers to download configuration files containing plaintext...

EUVD-2025-25834

Malicious code in bioql PyPI...

EUVD-2025-17439

Malicious code in bioql PyPI...

CVE-2025-57430

Creacast Creabox Manager 4.4.4 exposes sensitive configuration data via a publicly accessible endpoint /get. When accessed, this endpoint returns internal configuration including the creacodec.lua file, which contains plaintext admin credentials...

Netgear WNR1000v3 - Password Recovery Credential Disclosure (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Exploit Title: Netgear WNR1000v3 Password Recovery Credential Disclosure Vulnerability Date: 7-5-14 Exploit Author: c1ph04 Vendor Homepage: http://www.netgear.com/ Version...