Lucene search
K

3875 matches found

CVE
CVE
added 2026/03/16 2:32 a.m.17 views

CVE-2026-4207

CVE-2026-4207 affects D-Link DNS-120 family devices (DNS-120, DNS-1200-04/05, DNS-1550-04, and related models) and various DNS-DNR units. The vulnerability targets /cgi-bin/system_mgr.cgi in the cgi_sms_test/cgi_firmware_upload/cgi_ntp_time path, impacting the function cgi_device/cgi_sms_test/cgi...

9.8CVSS6.3AI score0.03774EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2026/03/16 2:2 a.m.27 views

CVE-2026-4206 D-Link DNS-1550-04 dsk_mgr.cgi ScanDisk_run_e2fsck command injection

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects the function...

6.5CVSS0.03233EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2026/03/16 2:2 a.m.3 views

CVE-2026-4206

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects the function...

6.5CVSS5.5AI score0.03233EPSS
Exploits1References8Affected Software20
CVE
CVE
added 2026/03/16 2:2 a.m.20 views

CVE-2026-4206

CVE-2026-4206 describes a remote command-injection flaw in multiple D-Link NAS/DVR devices (DNS-120 series, DNS-320/321/325/326/327L, DNS-340L, DNS-343/345, DNS-1100-4, DNS-1200-05, DNS-1550-04, DNR/DNS variants) affecting the disk-management CGI endpoint /cgi-bin/dsk_mgr.cgi. The vulnerability t...

9.8CVSS6.3AI score0.03233EPSS
Exploits1References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/16 1:2 a.m.5 views

CVE-2026-4204

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. The affected element is the function...

6.5CVSS5.5AI score0.03394EPSS
Exploits1References5Affected Software20
Vulnrichment
Vulnrichment
added 2026/03/16 1:2 a.m.2 views

CVE-2026-4203 D-Link DNS-1550-04 network_mgr.cgi cgi_dhcpd command injection

A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Impacted is the function...

6.5CVSS6.4AI score0.03831EPSS
Exploits1References13
Cvelist
Cvelist
added 2026/03/16 1:2 a.m.29 views

CVE-2026-4203 D-Link DNS-1550-04 network_mgr.cgi cgi_dhcpd command injection

A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Impacted is the function...

6.5CVSS0.03831EPSS
Exploits1References13
ATTACKERKB
ATTACKERKB
added 2026/03/16 1:2 a.m.2 views

CVE-2026-4203

A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Impacted is the function...

6.5CVSS5.6AI score0.03831EPSS
Exploits1References13Affected Software20
CVE
CVE
added 2026/03/16 1:2 a.m.21 views

CVE-2026-4203

Summary (CVE-2026-4203): A command-injection vulnerability affects multiple D-Link DNS-series devices (e.g., DNS-120, DNS-320, DNS-1550-04, etc.) via /cgi-bin/network_mgr.cgi in functions including cgi_portforwarding_add/del/modify/add_scan, cgi_dhcpd_lease, cgi_ddns, cgi_ip, and cgi_dhcpd. The i...

9.8CVSS6.4AI score0.03831EPSS
Exploits1References13Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.5 views

PT-2026-25638

A vulnerability was detected in LB-LINK BL-WR9000 2.4.9. This affects the function sub 458754 of the file /goform/set wifi. The manipulation results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used. The vendor was contacted early about...

6.5CVSS5.6AI score0.05166EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.5 views

PT-2026-25785

A security flaw has been discovered in Tenda AC8 16.03.50.11. This affects the function route set user policy rule of the file /cgi-bin/UploadCfg of the component Web Interface. The manipulation of the argument wans.policy.list1 results in os command injection. It is possible to launch the attack...

5.8CVSS5.6AI score0.06532EPSS
Exploits2References5
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.4 views

PT-2026-25583

A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Impacted is the function cgi...

6.5CVSS5.6AI score0.03831EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.5 views

PT-2026-25585

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. The impacted element is the function...

6.5CVSS5.5AI score0.035EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2026/03/15 11:32 p.m.6 views

CVE-2026-4197

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected is the function...

6.5CVSS5.5AI score0.16779EPSS
Exploits1References14Affected Software20
Cvelist
Cvelist
added 2026/03/15 11:32 p.m.38 views

CVE-2026-4197 D-Link DNS-1550-04 download_mgr.cgi RSS_Item_List command injection

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected is the function...

6.5CVSS0.16779EPSS
Exploits1References14
CVE
CVE
added 2026/03/15 11:32 p.m.18 views

CVE-2026-4197

The CVE-2026-4197 entry affects D-Link DNS-120 family devices (DNS-120, DNS-1200-05, DNS-1550-04, and others listed) and is tied to the function RSS_Get_Update_Status/RSS_Update/RSS_Channel_AutoDownlaod/RSS_Add/RSS_Channel_Item_Downlaod/RSS_History_Item_List/RSS_Item_List in the file /cgi-bin/dow...

9.8CVSS6.2AI score0.16779EPSS
Exploits1References14Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/15 11:32 p.m.4 views

CVE-2026-4196 D-Link DNS-1550-04 remote_backup.cgi cgi_set_rsync_server command injection

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This impacts the function...

6.5CVSS6.2AI score0.03738EPSS
Exploits1References9
ATTACKERKB
ATTACKERKB
added 2026/03/15 11:32 p.m.4 views

CVE-2026-4196

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This impacts the function...

6.5CVSS5.4AI score0.03738EPSS
Exploits1References9Affected Software20
Cvelist
Cvelist
added 2026/03/15 8:32 p.m.39 views

CVE-2026-4192 AvinashBole quip-mcp-server index.ts setupToolHandlers command injection

A vulnerability has been found in AvinashBole quip-mcp-server 1.0.0. Affected by this vulnerability is the function setupToolHandlers of the file src/index.ts. Such manipulation leads to command injection. The attack may be performed from remote. The exploit has been disclosed to the public and m...

6.5CVSS0.01301EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/03/15 8:32 p.m.2 views

CVE-2026-4192 AvinashBole quip-mcp-server index.ts setupToolHandlers command injection

A vulnerability has been found in AvinashBole quip-mcp-server 1.0.0. Affected by this vulnerability is the function setupToolHandlers of the file src/index.ts. Such manipulation leads to command injection. The attack may be performed from remote. The exploit has been disclosed to the public and m...

6.5CVSS6.2AI score0.01301EPSS
Exploits0References6
Rows per page
Query Builder