Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

17 matches found

RedhatCVE
RedhatCVEadded 2026/03/26 3:13 p.m.2 views

CVE-2025-62845

An improper neutralization of escape, meta, or control sequences vulnerability has been reported to affect QHora. If a local attacker gains an administrator account, they can then exploit the vulnerability to cause unexpected behavior. We have already fixed the vulnerability in the following...

8.4CVSS5.8AI score0.00184EPSS
Exploits0References1
EUVD
EUVDadded 2026/03/20 6:31 p.m.4 views

EUVD-2025-208901

An SQL injection vulnerability has been reported to affect QHora. If a local attacker gains an administrator account, they can then exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following version: QuRouter 2.6.2.007 and later...

9.3CVSS6AI score0.002EPSS
Exploits0References2
NVD
NVDadded 2026/03/20 5:16 p.m.2 views

CVE-2025-62843

An improper restriction of communication channel to intended endpoints vulnerability has been reported to affect QHora. If an attacker gains physical access, they can then exploit the vulnerability to gain the privileges that were intended for the original endpoint. We have already fixed the...

6.8CVSS0.00281EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/03/20 4:21 p.m.4 views

CVE-2025-62845

An improper neutralization of escape, meta, or control sequences vulnerability has been reported to affect QHora. If a local attacker gains an administrator account, they can then exploit the vulnerability to cause unexpected behavior. We have already fixed the vulnerability in the following...

8.4CVSS5.8AI score0.00184EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-54221

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.0107EPSS
Exploits0References2
CNVD
CNVDadded 2025/06/23 12:0 a.m.1 views

QNAP QHora Operating System Command Injection Vulnerability

The QNAP QHora is a router from the Taiwan, China-based company Qualicom Technology QNAP. QNAP QHora suffers from an operating system command injection vulnerability that stems from the application's failure to properly filter constructed command special characters, commands, etc. No details of t...

6.7CVSS7.5AI score0.00598EPSS
Exploits0References1
CNVD
CNVDadded 2025/06/23 12:0 a.m.3 views

QNAP QHora Authorization Issues Vulnerability

The QNAP QHora is a router from the Taiwan, China-based company Qualicom Technology QNAP. QNAP QHora has an authorization issue vulnerability that stems from improper authentication, and no detailed vulnerability details are available at this time...

7.8CVSS7.1AI score0.00224EPSS
Exploits0References1
NVD
NVDadded 2025/06/06 4:15 p.m.20 views

CVE-2024-13088

An improper authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: QuRouter 2.5.0.140 and later...

7.8CVSS0.00224EPSS
Exploits0References1
NVD
NVDadded 2025/06/06 4:15 p.m.6 views

CVE-2024-13087

A command injection vulnerability has been reported to affect QHora. If an attacker gains local network access who have also gained an administrator account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following version:...

6.7CVSS0.00598EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/06/06 3:53 p.m.15 views

CVE-2024-13088 QHora

An improper authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: QuRouter 2.5.0.140 and later...

5.2CVSS7.2AI score0.00224EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/06/06 3:53 p.m.19 views

CVE-2024-13087 QHora

A command injection vulnerability has been reported to affect QHora. If an attacker gains local network access who have also gained an administrator account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following version:...

2.4CVSS0.00598EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/06/06 12:0 a.m.3 views

PT-2025-24288 · Qurouter +1 · Qurouter +1

Name of the Vulnerable Software and Affected Versions: QuRouter versions prior to 2.4.6.028 Description: A command injection issue has been reported, affecting QHora. An attacker with local network access and an administrator account can exploit this to execute arbitrary commands. Recommendations...

2.4CVSS7.2AI score0.00598EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/03/09 4:37 p.m.16 views

CVE-2024-53700

A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.6.028 and later...

7.2CVSS8AI score0.01247EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/09 4:28 p.m.17 views

CVE-2024-50390

A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...

7.7CVSS8.1AI score0.0107EPSS
Exploits0
OSV
OSVadded 2025/03/07 5:15 p.m.2 views

CVE-2024-50390

A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...

9.8CVSS6.1AI score0.0107EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/03/07 4:14 p.m.7 views

CVE-2024-53700 QHora

A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.6.028 and later...

5.1CVSS8.3AI score0.01247EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/03/07 4:13 p.m.5 views

CVE-2024-50390 QHora

A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...

7.7CVSS8.3AI score0.0107EPSS
Exploits0References1
Rows per page
Query Builder