Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Cvelist
Cvelistadded 2026/02/07 9:32 a.m.31 views

CVE-2026-2081 D-Link DIR-823X set_password os command injection

A vulnerability was determined in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/setpassword. This manipulation of the argument httppasswd causes os command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclos...

5.8CVSS0.00339EPSS
Exploits1References6
CVE
CVEadded 2026/02/07 9:32 a.m.9 views

CVE-2026-2081

CVE-2026-2081 affects D-Link DIR-823X (build 250416). Affected component is an unknown function in /goform/set_password where manipulating the http_passwd argument causes OS command injection. The vulnerability is exploitable remotely and exploitation has been publicly disclosed. Documentation in...

7.2CVSS5.1AI score0.00339EPSS
Exploits1References6Affected Software1
CNNVD
CNNVDadded 2026/02/07 12:0 a.m.4 views

D-Link DIR-823X 操作系统命令注入漏洞

The D-Link DIR-823X is a wireless router produced by D-Link Corporation. The D-Link DIR-823X 250416 version has a vulnerability related to operating system command injection. This vulnerability stems from incorrect handling of parameters in the file/goform/setpassword, specifically the httppasswd...

7.2CVSS5.8AI score0.00339EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-10541

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.002EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/04/11 3:45 a.m.20 views

CVE-2025-29390

jerryhanjj ERP 1.0 is vulnerable to SQL Injection in the setpassword function in application/controllers/home.php...

8.8CVSS8.1AI score0.002EPSS
Exploits1References1
NVD
NVDadded 2025/04/09 4:15 p.m.14 views

CVE-2025-29390

jerryhanjj ERP 1.0 is vulnerable to SQL Injection in the setpassword function in application/controllers/home.php...

8.8CVSS0.002EPSS
Exploits1References2
CVE
CVEadded 2025/04/09 12:0 a.m.49 views

CVE-2025-29390

CVE-2025-29390 affects jerryhanjj ERP 1.0. The vulnerability is SQL Injection in the set_password function of application/controllers/home.php. CVSS v3.1 base score 8.8 (HIGH) with attack vector Network, complexity Low, privileges Required Low, user interaction None, and impacts Confidentiality, ...

8.8CVSS8.3AI score0.002EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2025/04/09 12:0 a.m.8 views

CVE-2025-29390

jerryhanjj ERP 1.0 is vulnerable to SQL Injection in the setpassword function in application/controllers/home.php...

7.6AI score0.002EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/04/09 12:0 a.m.8 views

CVE-2025-29390

jerryhanjj ERP 1.0 is vulnerable to SQL Injection in the setpassword function in application/controllers/home.php...

0.002EPSS
Exploits1References2
Veracode
Veracodeadded 2022/09/14 5:29 a.m.15 views

Information Disclosure

rdiffweb is vulnerable to Information Disclosure. The vulnerability exists in setpassword method in store.py where a remote unauthenticated attacker is able to gain access to sensitive user information through the default error page due to insufficient checks...

5.3CVSS5.6AI score0.00232EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder