Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-26602

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.01722EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/09/05 12:34 a.m.13 views

CVE-2025-56498

An OS command injection vulnerability exists in PLDT WiFi Router's Prolink PGN6401V Firmware 8.1.2 web management interface. The ping6.asp page submits user input to the /boaform/formPing6 endpoint via the pingAddr parameter, which is not properly sanitized. An authenticated attacker can exploit...

5.3CVSS7.7AI score0.01722EPSS
Exploits1References1
OSV
OSV
added 2025/09/03 4:15 p.m.3 views

CVE-2025-56498

An OS command injection vulnerability exists in PLDT WiFi Router's Prolink PGN6401V Firmware 8.1.2 web management interface. The ping6.asp page submits user input to the /boaform/formPing6 endpoint via the pingAddr parameter, which is not properly sanitized. An authenticated attacker can exploit...

5.3CVSS5.9AI score0.01722EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/09/03 12:0 a.m.8 views

PT-2025-35785

Name of the Vulnerable Software and Affected Versions: PLDT WiFi Router Prolink PGN6401V Firmware version 8.1.2 Description: An OS command injection flaw exists in the web management interface. The ping6.asp page submits user input to the /boaform/formPing6 API endpoint via the pingAddr parameter...

5.3CVSS6.9AI score0.01722EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/09/03 12:0 a.m.11 views

CVE-2025-56498

An OS command injection vulnerability exists in PLDT WiFi Router's Prolink PGN6401V Firmware 8.1.2 web management interface. The ping6.asp page submits user input to the /boaform/formPing6 endpoint via the pingAddr parameter, which is not properly sanitized. An authenticated attacker can exploit...

0.01722EPSS
Exploits1References2
CVE
CVE
added 2025/09/03 12:0 a.m.20 views

CVE-2025-56498

The CVE-2025-56498 entry concerns the PLDT WiFi Router Prolink PGN6401V (Firmware 8.1.2) web management interface. The vulnerability resides in the ping6.asp page, where the pingAddr parameter is sent to /boaform/formPing6 without proper sanitization, enabling an authenticated attacker to inject ...

5.3CVSS7.2AI score0.01722EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder