CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19611 matches found

EUVD•added 2026/04/27 3:45 p.m.•4 views

EUVD-2026-25875

A security vulnerability has been detected in Totolink A8000RU 7.1cu.643b20200521. This affects the function setStorageCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument sambaEnabled leads to os command injection. Remote exploitation of the attack ...

10CVSS8.2AI score0.01766EPSS

Exploits0References5

Cvelist•added 2026/04/27 3:45 p.m.•23 views

CVE-2026-7137 Totolink A8000RU CGI cstecgi.cgi setStorageCfg os command injection

10CVSS0.01766EPSS

Exploits0References5

EUVD•added 2026/04/27 3:30 p.m.•5 views

EUVD-2026-25874

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. Affected by this issue is the function setDmzCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument wanIdx can lead to os command injection. The attack may be launched...

10CVSS8.3AI score0.01766EPSS

Exploits0References5

ATTACKERKB•added 2026/04/27 3:30 p.m.•1 views

CVE-2026-7136

10CVSS5.2AI score0.01766EPSS

Exploits0References5Affected Software1

CVE•added 2026/04/27 3:30 p.m.•9 views

CVE-2026-7136

CVE-2026-7136 affects Totolink A8000RU, version 7.1cu.643_b20200521. Vulnerable component: CGI Handler, file /cgi-bin/cstecgi.cgi, function setDmzCfg. Manipulating the wanIdx argument can cause an OS command injection. Exploit can be launched remotely and public exploits exist. Documents consiste...

10CVSS8.2AI score0.01766EPSS

Exploits0References5

RedhatCVE•added 2026/04/27 1:22 p.m.•9 views

CVE-2026-6980

A vulnerability has been found in Divyanshu-hash GitPilot-MCP up to 9ed9f153ba4158a2ad230ee4871b25130da29ffd. This impacts the function repopath of the file main.py. Such manipulation of the argument command leads to command injection. The attack can be launched remotely. The exploit has been...

7.5CVSS7AI score0.01694EPSS

Exploits0References1

NVD•added 2026/04/27 1:16 p.m.•4 views

CVE-2026-7123

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument setIptvCfg results in os command injection. The attack can be initiated remotely. The...

10CVSS0.01766EPSS

Exploits0References5

NVD•added 2026/04/27 1:16 p.m.•5 views

CVE-2026-7124

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument addrPrefixLen can lead to os command injection. The attack ca...

10CVSS0.01766EPSS

Exploits0References5

ATTACKERKB•added 2026/04/27 12:45 p.m.•4 views

CVE-2026-7125

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument merge leads to os command injection. The attack may be initiated remotely. T...

10CVSS8.3AI score0.01766EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/04/27 12:45 p.m.•2 views

CVE-2026-7125 Totolink A8000RU CGI cstecgi.cgi setWiFiEasyCfg os command injection

10CVSS8.3AI score0.01766EPSS

Exploits0References5

Cvelist•added 2026/04/27 12:45 p.m.•29 views

CVE-2026-7125 Totolink A8000RU CGI cstecgi.cgi setWiFiEasyCfg os command injection

10CVSS0.01766EPSS

Exploits0References5

ATTACKERKB•added 2026/04/27 12:30 p.m.•3 views

CVE-2026-7124

10CVSS8.2AI score0.01766EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/04/27 12:30 p.m.•30 views

CVE-2026-7124 Totolink A8000RU CGI cstecgi.cgi setIpv6LanCfg os command injection

10CVSS0.01766EPSS

Exploits0References5

NVD•added 2026/04/27 12:16 p.m.•6 views

CVE-2026-7122

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This impacts the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument enable leads to os command injection. It is possible to launch the attack remotely. The...

10CVSS0.01766EPSS

Exploits0References5

NVD•added 2026/04/27 12:16 p.m.•4 views

CVE-2026-7119

A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used...

9CVSS0.03269EPSS

Exploits1References5

NVD•added 2026/04/27 12:16 p.m.•5 views

CVE-2026-7121

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument wizard causes os command injection. It is possible to initiate the attack remotely. The exploit has...

10CVSS0.01947EPSS

Exploits0References5

EUVD•added 2026/04/27 12:15 p.m.•3 views

EUVD-2026-25839

10CVSS8.2AI score0.01766EPSS

Exploits0References5

CVE•added 2026/04/27 12:15 p.m.•12 views

CVE-2026-7123

CVE-2026-7123 affects Totolink A8000RU (firmware 7.1cu.643_b20200521) CGI Handler, specifically the file /cgi-bin/cstecgi.cgi function setIptvCfg. The vulnerability is a remote OS command injection caused by manipulation of the setIptvCfg argument. Public exploits exist, enabling remote attackers...

10CVSS8.2AI score0.01766EPSS

Exploits0References5

Vulnrichment•added 2026/04/27 11:45 a.m.•3 views

CVE-2026-7121 Totolink A8000RU CGI cstecgi.cgi setWizardCfg os command injection

10CVSS8.2AI score0.01947EPSS

Exploits0References5

ATTACKERKB•added 2026/04/27 11:45 a.m.•3 views

CVE-2026-7121

10CVSS8.3AI score0.01947EPSS

Exploits0References5Affected Software1

Rows per page