Exploit for Missing Authentication for Critical Function in Cpanel

CVE-2026-41940 Auto Exploit !Pythonhttps://img.shields.io/...

CVE-2026-26213

The CVE-2026-26213 issue affects thingino-firmware up to firmware-2026-03-16, where an unauthenticated OS command injection exists in the WiFi captive portal CGI script. An attacker can inject malicious code through unsanitized HTTP parameter names, exploiting eval in parse_query() and parse_post...

CVE-2026-22209

thingino-firmware up to commit e3f6a41 published on 2026-03-15 contains an unauthenticated os command injection vulnerability in the WiFi captive portal CGI script that allows remote attackers to execute arbitrary commands as root by injecting malicious code through unsanitized HTTP parameter...

CVE-2023-53771

MiniDVBLinux 5.4 contains an authentication bypass vulnerability that allows remote attackers to change the root password without authentication. Attackers can send crafted POST requests to the system setup endpoint with modified SYSTEMPASSWORD parameters to reset root credentials...

PT-2025-50268

Name of the Vulnerable Software and Affected Versions MiniDVBLinux version 5.4 Description The software contains a flaw that allows remote attackers to bypass authentication and modify the root password. This is achieved by sending specially crafted POST requests to the system setup endpoint,...

EUVD-2025-30251

Malicious code in bioql PyPI...

CVE-2019-12301

The Percona Server 5.6.44-85.0-1 packages for Debian and Ubuntu suffered an issue where the server would reset the root password to a blank value upon an upgrade. This was fixed in 5.6.44-85.0-2...

Coredy CX-E120 Repeater Multiple Vulnerabilities

Vulnerabilities Summary The following advisory describes two 2 vulnerabilities found in Coredy CX-E120 Repeater. The Coredy CX-E120 WiFi Range Extender is “a network device with multifunction, which can be using for increasing the distance of a WiFi network by boosting the existing WiFi signal an...

Sawmill Enterprise < 8.1.7.3 - Multiple Vulnerabilities

SEC Consult Security Advisory ======================================================================= title: Multiple critical vulnerabilities product: Sawmill - Universal Log File Analysis vulnerable version: Sawmill Enterprise v8.1.7.3 fixed version: v8.1.7.3 impact: critical homepage:...

CVE-2008-2140

Cross-site request forgery CSRF vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote attackers to reset the root password as the administrator via a crafted URL...

Linux imapd Remote Overflow File Retrieve Exploit

Exploit for linux platform in category remote exploits ================================================= Linux imapd Remote Overflow File Retrieve Exploit ================================================= / This is the remote exploit of the hole in the imap daemon, for Linux. The instruction code...