Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3858 matches found

CVE
CVEadded 2026/05/03 6:30 a.m.24 views

CVE-2026-7683

Edimax BR-6428nC (firmware up to 1.16) exposes a vulnerability in the Web Interface, specifically /goform/setWAN, where manipulating the pppUserName/pptpUserName argument enables remote command injection. The issue is actionable remotely, with exploits publicly available. The vendor was contacted...

6.5CVSS5.5AI score0.01543EPSS
Exploits0References6
EUVD
EUVDadded 2026/05/03 6:15 a.m.13 views

EUVD-2026-26820

A security flaw has been discovered in Edimax BR-6208AC 1.02. The impacted element is the function setWAN of the file /goform/setWAN of the component L2TP Mode. The manipulation of the argument L2TPUserName results in command injection. It is possible to launch the attack remotely. The exploit ha...

6.5CVSS5.5AI score0.01158EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/03 6:15 a.m.6 views

CVE-2026-7682

A security flaw has been discovered in Edimax BR-6208AC 1.02. The impacted element is the function setWAN of the file /goform/setWAN of the component L2TP Mode. The manipulation of the argument L2TPUserName results in command injection. It is possible to launch the attack remotely. The exploit ha...

6.5CVSS6.3AI score0.01158EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/05/03 12:0 a.m.8 views

PT-2026-36696

Name of the Vulnerable Software and Affected Versions Wavlink WL-WN570HA1 version R70HA1 V1410 221110 Description A remote command injection issue exists in the ping ddns function within the '/cgi-bin/adm.cgi' endpoint. Manipulating the DDNS argument allows an attacker to execute arbitrary comman...

6.5CVSS6.8AI score0.03191EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2026/05/03 12:0 a.m.5 views

PT-2026-36722

Name of the Vulnerable Software and Affected Versions JD Cloud JDCOS version 4.5.1.r4518 Description A flaw in the Service Interface component allows remote command injection. The issue exists within the set iptv info function of the '/jdcap' file, where improper handling of the vid argument...

6.5CVSS6.8AI score0.01158EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2026/05/03 12:0 a.m.4 views

PT-2026-36685

A security flaw has been discovered in Edimax BR-6208AC 1.02. The impacted element is the function setWAN of the file /goform/setWAN of the component L2TP Mode. The manipulation of the argument L2TPUserName results in command injection. It is possible to launch the attack remotely. The exploit ha...

6.5CVSS6.3AI score0.01158EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/05/03 12:0 a.m.5 views

PT-2026-36687

A weakness has been identified in Edimax BR-6428nC up to 1.16. This affects an unknown function of the file /goform/setWAN of the component Web Interface. This manipulation of the argument pppUserName/pptpUserName causes command injection. The attack can be initiated remotely. The exploit has bee...

6.5CVSS6.3AI score0.01543EPSS
Exploits0References7
NVD
NVDadded 2026/05/02 4:16 p.m.7 views

CVE-2026-7653

A security flaw has been discovered in r-huijts mcp-server-rijksmuseum up to 1.0.4. Affected is the function openimageinbrowser of the file src/index.ts of the component MCP Interface. Performing a manipulation of the argument imageUrl results in os command injection. The attack is possible to be...

6.5CVSS0.01294EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/02 3:30 p.m.7 views

CVE-2026-7653

A security flaw has been discovered in r-huijts mcp-server-rijksmuseum up to 1.0.4. Affected is the function openimageinbrowser of the file src/index.ts of the component MCP Interface. Performing a manipulation of the argument imageUrl results in os command injection. The attack is possible to be...

6.5CVSS5.5AI score0.01294EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/05/02 3:30 p.m.17 views

CVE-2026-7653

Affected product : r-huijts mcp-server-rijksmuseum (MCP Interface) up to 1.0.4. Vulnerable component/function : open_image_in_browser in src/index.ts. Vulnerability : Performing a manipulation of the argument imageUrl results in an OS command injection. The attack can be carried out remotely (net...

6.5CVSS6.3AI score0.01294EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/05/02 3:30 p.m.2 views

CVE-2026-7653 r-huijts mcp-server-rijksmuseum MCP index.ts open_image_in_browser os command injection

A security flaw has been discovered in r-huijts mcp-server-rijksmuseum up to 1.0.4. Affected is the function openimageinbrowser of the file src/index.ts of the component MCP Interface. Performing a manipulation of the argument imageUrl results in os command injection. The attack is possible to be...

6.5CVSS6.3AI score0.01294EPSS
Exploits0References4
NVD
NVDadded 2026/05/02 2:16 p.m.2 views

CVE-2026-7629

A flaw has been found in kleneway awesome-cursor-mpc-server up to 2.0.1. Impacted is the function runCodeReviewTool of the file src/tools/codeReview.ts of the component Ccode-Review Tool. Executing a manipulation can lead to command injection. The attack may be launched remotely. The exploit has...

6.5CVSS0.0111EPSS
Exploits0References7
EUVD
EUVDadded 2026/05/02 1:0 p.m.4 views

EUVD-2026-26791

A flaw has been found in kleneway awesome-cursor-mpc-server up to 2.0.1. Impacted is the function runCodeReviewTool of the file src/tools/codeReview.ts of the component Ccode-Review Tool. Executing a manipulation can lead to command injection. The attack may be launched remotely. The exploit has...

6.5CVSS6.3AI score0.0111EPSS
Exploits0References7
NVD
NVDadded 2026/05/02 12:16 p.m.1 views

CVE-2026-7628

A vulnerability was detected in crazyrabbitLTC mcp-code-review-server up to 0.1.0. This issue affects the function executeRepomix of the file src/repomix.ts of the component RepoMix Command Handler. Performing a manipulation results in command injection. The attack may be initiated remotely. The...

6.5CVSS0.0111EPSS
Exploits0References7
EUVD
EUVDadded 2026/05/02 12:0 p.m.3 views

EUVD-2026-26787

A vulnerability was detected in crazyrabbitLTC mcp-code-review-server up to 0.1.0. This issue affects the function executeRepomix of the file src/repomix.ts of the component RepoMix Command Handler. Performing a manipulation results in command injection. The attack may be initiated remotely. The...

6.5CVSS6.3AI score0.0111EPSS
Exploits0References7
Vulnrichment
Vulnrichmentadded 2026/05/02 12:0 p.m.2 views

CVE-2026-7628 crazyrabbitLTC mcp-code-review-server RepoMix repomix.ts executeRepomix command injection

A vulnerability was detected in crazyrabbitLTC mcp-code-review-server up to 0.1.0. This issue affects the function executeRepomix of the file src/repomix.ts of the component RepoMix Command Handler. Performing a manipulation results in command injection. The attack may be initiated remotely. The...

6.5CVSS6.3AI score0.0111EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2026/05/02 12:0 p.m.2 views

CVE-2026-7628

A vulnerability was detected in crazyrabbitLTC mcp-code-review-server up to 0.1.0. This issue affects the function executeRepomix of the file src/repomix.ts of the component RepoMix Command Handler. Performing a manipulation results in command injection. The attack may be initiated remotely. The...

6.5CVSS5.6AI score0.0111EPSS
Exploits0References7Affected Software1
CVE
CVEadded 2026/05/02 12:0 p.m.8 views

CVE-2026-7628

The CVE-2026-7628 affects crazyrabbitLTC mcp-code-review-server (up to version 0.1.0). The vulnerability is in RepoMix Command Handler’s function executeRepomix (src/repomix.ts), where a manipulation yields command injection. Exploitation can be remote, and public exploit code is available. The i...

6.5CVSS6.3AI score0.0111EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/05/02 9:0 a.m.38 views

CVE-2026-7609 TRENDnet TEW-821DAP Firmware Udpate diagnostic tools_diagnostic os command injection

A flaw has been found in TRENDnet TEW-821DAP up to 1.12B01. The impacted element is the function toolsdiagnostic of the file /tmp/diagnostic of the component Firmware Udpate. This manipulation causes os command injection. Remote exploitation of the attack is possible. The exploit has been publish...

6.5CVSS0.04123EPSS
Exploits1References4
EUVD
EUVDadded 2026/05/02 9:0 a.m.2 views

EUVD-2026-26773

A flaw has been found in TRENDnet TEW-821DAP up to 1.12B01. The impacted element is the function toolsdiagnostic of the file /tmp/diagnostic of the component Firmware Udpate. This manipulation causes os command injection. Remote exploitation of the attack is possible. The exploit has been publish...

6.5CVSS6.2AI score0.04123EPSS
Exploits1References4
Rows per page
Query Builder