Lucene search
K

3875 matches found

Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.6 views

PT-2026-26548

A vulnerability was found in Comfast CF-AC100 2.6.0.8. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET&section=wireless device dissoc. The manipulation results in command injection. The attack can be executed remotely. The exploit has been made public and could be use...

5.8CVSS5.5AI score0.02055EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.5 views

D-Link DIR-820LW 操作系统命令注入漏洞

The D-Link DIR-820LW is a dual-band wireless router produced by D-Link Corporation. Version 2.03 of the D-Link DIR-820LW contains a vulnerability related to operating system command injection. This vulnerability stems from the function ssdpcgimain in the SSDP component, which allows for command...

9.8CVSS7.4AI score0.03201EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.6 views

PT-2026-26663

A vulnerability was determined in Totolink WA300 5.2cu.7112 B20190227. Affected by this issue is the function recvUpgradeNewFw of the file /cgi-bin/cstecgi.cgi. This manipulation causes os command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed an...

7.5CVSS6.8AI score0.01906EPSS
Exploits1References7
EUVD
EUVD
added 2026/03/16 6:32 p.m.6 views

EUVD-2026-12472

A security flaw has been discovered in Tenda AC8 16.03.50.11. This affects the function routesetuserpolicyrule of the file /cgi-bin/UploadCfg of the component Web Interface. The manipulation of the argument wans.policy.list1 results in os command injection. It is possible to launch the attack...

5.8CVSS5.6AI score0.06532EPSS
Exploits2References6
NVD
NVD
added 2026/03/16 6:16 p.m.3 views

CVE-2026-4253

A security flaw has been discovered in Tenda AC8 16.03.50.11. This affects the function routesetuserpolicyrule of the file /cgi-bin/UploadCfg of the component Web Interface. The manipulation of the argument wans.policy.list1 results in os command injection. It is possible to launch the attack...

7.2CVSS0.06532EPSS
Exploits2References5
CVE
CVE
added 2026/03/16 5:2 p.m.12 views

CVE-2026-4253

The CVE-2026-4253 entry affects Tenda AC8 firmware version 16.03.50.11 in the Web Interface component, specifically the /cgi-bin/UploadCfg path and the route_set_user_policy_rule function. The issue arises from manipulating the wans.policy.list1 argument, leading to an OS command injection vulner...

7.2CVSS5.6AI score0.06532EPSS
Exploits2References5Affected Software1
EUVD
EUVD
added 2026/03/16 3:30 p.m.6 views

EUVD-2026-12277

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. The affected element is the function...

6.5CVSS5.5AI score0.03394EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/16 3:30 p.m.5 views

EUVD-2026-12282

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects the function...

6.5CVSS5.5AI score0.03233EPSS
Exploits1References9
EUVD
EUVD
added 2026/03/16 3:30 p.m.8 views

EUVD-2026-12265

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected is the function...

6.5CVSS5.5AI score0.16779EPSS
Exploits1References15
EUVD
EUVD
added 2026/03/16 3:30 p.m.4 views

EUVD-2026-12275

A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Impacted is the function...

6.5CVSS5.6AI score0.03831EPSS
Exploits1References14
EUVD
EUVD
added 2026/03/16 3:30 p.m.5 views

EUVD-2026-12255

A vulnerability has been found in AvinashBole quip-mcp-server 1.0.0. Affected by this vulnerability is the function setupToolHandlers of the file src/index.ts. Such manipulation leads to command injection. The attack may be performed from remote. The exploit has been disclosed to the public and m...

6.5CVSS5.4AI score0.01301EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/16 3:30 p.m.6 views

EUVD-2026-12262

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects an unknown function of the file...

6.5CVSS5.5AI score0.03499EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/16 3:30 p.m.6 views

EUVD-2026-12214

A weakness has been identified in Topsec TopACM 3.0. Affected by this vulnerability is an unknown functionality of the file /view/systemConfig/management/nmcsync.php of the component HTTP Request Handler. Executing a manipulation of the argument templatepath can lead to os command injection. The...

10CVSS7.1AI score0.0207EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/16 3:30 p.m.3 views

EUVD-2026-12204

A flaw has been found in Wavlink WL-WN578W2 221110. Impacted is the function DeleteMaclist/SetName/GuestWifi of the file /cgi-bin/wireless.cgi of the component POST Request Handler. Executing a manipulation can lead to command injection. It is possible to launch the attack remotely. The exploit h...

10CVSS5.5AI score0.02057EPSS
Exploits0References9
EUVD
EUVD
added 2026/03/16 3:30 p.m.5 views

EUVD-2026-12192

A vulnerability was detected in Wavlink WL-WN579A3 220323. This issue affects the function SetName/GuestWifi of the file /cgi-bin/wireless.cgi of the component POST Request Handler. Performing a manipulation results in command injection. It is possible to initiate the attack remotely. The exploit...

10CVSS7.1AI score0.02103EPSS
Exploits0References8
NVD
NVD
added 2026/03/16 2:20 p.m.2 views

CVE-2026-4228

A vulnerability was detected in LB-LINK BL-WR9000 2.4.9. This affects the function sub458754 of the file /goform/setwifi. The manipulation results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used. The vendor was contacted early about th...

9.8CVSS0.05166EPSS
Exploits1References4
NVD
NVD
added 2026/03/16 2:20 p.m.4 views

CVE-2026-4210

A security flaw has been discovered in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected by this vulnerability i...

9.8CVSS0.03564EPSS
Exploits1References5
NVD
NVD
added 2026/03/16 2:20 p.m.3 views

CVE-2026-4207

A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This impacts the function...

9.8CVSS0.03774EPSS
Exploits1References9
NVD
NVD
added 2026/03/16 2:20 p.m.6 views

CVE-2026-4206

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects the function...

9.8CVSS0.03233EPSS
Exploits1References8
NVD
NVD
added 2026/03/16 2:20 p.m.5 views

CVE-2026-4209

A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected is the function...

9.8CVSS0.04088EPSS
Exploits1References15
Rows per page
Query Builder