CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3844 matches found

NVD•added 2026/05/31 2:16 p.m.•12 views

CVE-2026-10182

A vulnerability was determined in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formWlanSetup of the file /goform/formWlanSetup. Executing a manipulation of the argument enrollee can lead to command injection. The attack can be launched remotely. The exploit has been publicly...

6.5CVSS0.01072EPSS

Exploits0References5

ATTACKERKB•added 2026/05/31 1:0 p.m.•9 views

CVE-2026-10182

6.5CVSS6.4AI score0.01072EPSS

Exploits0References5Affected Software1

CVE•added 2026/05/31 1:0 p.m.•13 views

CVE-2026-10182

CVE-2026-10182 affects TRENDnet TEW-432BRP firmware 3.10B20. The vulnerable element is the function /goform/formWlanSetup (formWlanSetup) where manipulating the argument enrollee can cause a command injection . The issue is exploitable remotely, and public disclosure of the exploit is indicated. ...

6.5CVSS6.4AI score0.01072EPSS

Exploits0References5

EUVD•added 2026/05/31 1:0 p.m.•12 views

EUVD-2026-33504

6.5CVSS6.4AI score0.01072EPSS

Exploits0References5

NVD•added 2026/05/31 12:16 p.m.•11 views

CVE-2026-10180

A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. Impacted is the function formSysCmd of the file /goform/formSysCmd. Such manipulation of the argument sysCmd leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma...

6.5CVSS0.0105EPSS

Exploits0References5

EUVD•added 2026/05/31 11:15 a.m.•12 views

EUVD-2026-33500

6.5CVSS6.3AI score0.0105EPSS

Exploits0References5

ATTACKERKB•added 2026/05/31 11:15 a.m.•9 views

CVE-2026-10180

6.5CVSS6.3AI score0.0105EPSS

Exploits0References5Affected Software1

CVE•added 2026/05/31 11:15 a.m.•17 views

CVE-2026-10180

TRENDnet TEW-432BRP firmware 3.10B20 is affected by CVE-2026-10180 in the formSysCmd function of /goform/formSysCmd, enabling remote command injection via manipulation of the sysCmd argument. The vulnerability status is tied to product EOL (since 2009) with the vendor stating they cannot replicat...

6.5CVSS6.3AI score0.0105EPSS

Exploits0References5

CNNVD•added 2026/05/31 12:0 a.m.•7 views

Edimax BR-6478AC 命令注入漏洞

The Edimax BR-6478AC is a dual-band Gigabit router produced by Edimax Corporation. The Edimax BR-6478AC version 1.23 has a command injection vulnerability. This vulnerability stems from an operation called “rootAPmac” in the function “formWlbasic” of the component “POST Request Handler”. This...

6.5CVSS6.5AI score0.01072EPSS

Exploits0References5

Positive Technologies•added 2026/05/31 12:0 a.m.•11 views

PT-2026-45190

6.5CVSS6.3AI score0.0105EPSS

Exploits0References6

NVD•added 2026/05/30 5:16 p.m.•14 views

CVE-2026-10127

A weakness has been identified in Edimax BR-6478AC 1.23. This affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack may be initiated remotely. The exploit has...

6.5CVSS0.01262EPSS

Exploits0References4

ATTACKERKB•added 2026/05/30 4:30 p.m.•7 views

CVE-2026-10127

6.5CVSS6.5AI score0.01262EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/05/30 4:30 p.m.•8 views

CVE-2026-10127 Edimax BR-6478AC POST Request formStaDrvSetup command injection

6.5CVSS6.5AI score0.01262EPSS

Exploits0References4

RedhatCVE•added 2026/05/29 8:13 p.m.•12 views

CVE-2026-9452

A security vulnerability has been detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. Affected by this issue is the function ExecTool.execute of the file /src/tools/exec.ts. Such manipulation leads to os command injection. The attack can be launched remotely. The...

7.5CVSS6.7AI score0.01549EPSS

Exploits0References1

RedhatCVE•added 2026/05/29 8:13 p.m.•9 views

CVE-2026-9404

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This affects the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument provider leads to os command injection. The attack may be launched remotely. Th...

10CVSS7.1AI score0.01909EPSS

Exploits0References1

NVD•added 2026/05/29 2:16 p.m.•11 views

CVE-2026-10061

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. Affected is the function formWPS of the file /goform/formWPS. The manipulation of the argument peerPin results in command injection. The attack can be executed remotely. The exploit has been made public and could be used. The vendor...

9.8CVSS0.04341EPSS

Exploits1References4

Cvelist•added 2026/05/29 1:30 p.m.•31 views

CVE-2026-10061 TRENDnet TEW-432BRP formWPS command injection

6.5CVSS0.04341EPSS

Exploits1References4

ATTACKERKB•added 2026/05/29 1:30 p.m.•10 views

CVE-2026-10061

6.5CVSS6.3AI score0.04341EPSS

Exploits1References4Affected Software1

CVE•added 2026/05/29 1:30 p.m.•21 views

CVE-2026-10061

CVE-2026-10061 affects TRENDnet TEW-432BRP, version 3.10B20. The vulnerability is in the function goform/formWPS, where manipulating the peerPin argument enables a remote command injection. The attack can be executed remotely and, per the sources, the exploit has been made public. TRENDnet notes ...

9.8CVSS6.3AI score0.04341EPSS

Exploits1References4Affected Software1

ATTACKERKB•added 2026/05/29 1:15 p.m.•7 views

CVE-2026-10060

A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetRoute of the file /goform/formSetRoute. The manipulation of the argument ip/mask/gateway leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the...

6.5CVSS6.2AI score0.04431EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by