Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

RedhatCVE
RedhatCVEadded 2026/05/04 8:21 p.m.3 views

CVE-2026-7690

A weakness has been identified in Wavlink WL-WN570HA1 R70HA1 V1410221110. This issue affects the function setsysadm of the file /cgi-bin/adm.cgi. This manipulation of the argument Username causes command injection. It is possible to initiate the attack remotely. The exploit has been made availabl...

9.8CVSS6.4AI score0.00332EPSS
Exploits1References1
NVD
NVDadded 2026/05/03 10:16 a.m.4 views

CVE-2026-7690

A weakness has been identified in Wavlink WL-WN570HA1 R70HA1 V1410221110. This issue affects the function setsysadm of the file /cgi-bin/adm.cgi. This manipulation of the argument Username causes command injection. It is possible to initiate the attack remotely. The exploit has been made availabl...

9.8CVSS0.00332EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/05/03 9:45 a.m.31 views

CVE-2026-7690 Wavlink WL-WN570HA1 adm.cgi set_sys_adm command injection

A weakness has been identified in Wavlink WL-WN570HA1 R70HA1 V1410221110. This issue affects the function setsysadm of the file /cgi-bin/adm.cgi. This manipulation of the argument Username causes command injection. It is possible to initiate the attack remotely. The exploit has been made availabl...

6.5CVSS0.00332EPSS
Exploits1References4
CVE
CVEadded 2026/05/03 9:45 a.m.10 views

CVE-2026-7690

CVE-2026-7690 affects Wavlink WL-WN570HA1 devices (firmware R70HA1 V1410_221110). The vulnerability is in /cgi-bin/adm.cgi set_sys_adm and arises from manipulating the Username parameter to cause remote command injection. Impact is remote, with public exploit availability noted in the source desc...

9.8CVSS5.7AI score0.00332EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2026/05/03 12:0 a.m.4 views

Wavlink WL-WN570HA1 注入漏洞

The Wavlink WL-WN570HA1 is a wireless network expansion device produced by the Chinese company Wavlink. The Wavlink WL-WN570HA1 R70HA1 V1410221110 version has a vulnerability related to command injection. This vulnerability stems from the operation of the parameter “Username” in the function...

9.8CVSS6.6AI score0.00332EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-42633

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01938EPSS
Exploits1References1
NVD
NVDadded 2025/09/02 3:15 p.m.1 views

CVE-2025-50757

Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

6.5CVSS0.03876EPSS
Exploits1References1
OSV
OSVadded 2025/09/02 3:15 p.m.1 views

CVE-2024-48705

Wavlink AC1200 with firmware versions M32A3V1410230602 and M32A3V1410240222 are vulnerable to a post-authentication command injection while resetting the password. This vulnerability is specifically found within the "setsysadm" function of the "adm.cgi" binary, and is due to improper santization ...

6.5CVSS5.8AI score0.09084EPSS
Exploits1References2
NVD
NVDadded 2025/09/02 3:15 p.m.1 views

CVE-2024-48705

Wavlink AC1200 with firmware versions M32A3V1410230602 and M32A3V1410240222 are vulnerable to a post-authentication command injection while resetting the password. This vulnerability is specifically found within the "setsysadm" function of the "adm.cgi" binary, and is due to improper santization ...

6.5CVSS0.09084EPSS
Exploits1References2
CVE
CVEadded 2025/09/02 12:0 a.m.8 views

CVE-2024-48705

CVE-2024-48705 affects Wavlink AC1200 firmware versions M32A3_V1410_230602 and M32A3_V1410_240222. The issue is a post-authentication command injection in the adm.cgi binary, specifically in set_sys_adm, caused by insufficient sanitization of the newpass field during password reset. Impact is sta...

6.5CVSS6.9AI score0.09084EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2025/09/02 12:0 a.m.1 views

CVE-2024-48705

Wavlink AC1200 with firmware versions M32A3V1410230602 and M32A3V1410240222 are vulnerable to a post-authentication command injection while resetting the password. This vulnerability is specifically found within the "setsysadm" function of the "adm.cgi" binary, and is due to improper santization ...

6.9AI score0.09084EPSS
Exploits1References2
EUVD
EUVDadded 2025/09/02 12:0 a.m.1 views

EUVD-2025-26404

Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

6.5CVSS7.6AI score0.03876EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/09/02 12:0 a.m.5 views

CVE-2024-48705

Wavlink AC1200 with firmware versions M32A3V1410230602 and M32A3V1410240222 are vulnerable to a post-authentication command injection while resetting the password. This vulnerability is specifically found within the "setsysadm" function of the "adm.cgi" binary, and is due to improper santization ...

0.09084EPSS
Exploits1References2
EUVD
EUVDadded 2025/09/02 12:0 a.m.0 views

EUVD-2024-54944

Wavlink AC1200 with firmware versions M32A3V1410230602 and M32A3V1410240222 are vulnerable to a post-authentication command injection while resetting the password. This vulnerability is specifically found within the "setsysadm" function of the "adm.cgi" binary, and is due to improper santization ...

6.5CVSS6.8AI score0.09084EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/09/02 12:0 a.m.1 views

WAVLINK WN535K3 安全漏洞

WAVLINK WN535K3 is a wireless router from China Ruiyin WAVLINK. A security vulnerability exists in the Wavlink WN535K3 version 20191010, which stems from the improper handling of the username parameter in the setsysadm function, which could lead to the execution of arbitrary commands...

6.5CVSS6.9AI score0.03876EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/07/16 12:16 a.m.2 views

CVE-2025-50756

Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the newpass parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

9.8CVSS7.9AI score0.09979EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/01/14 12:0 a.m.1 views

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. A buffer overflow vulnerability exists in the WAVLINK AC3000 M33A8.V5030.210505, which is caused by the adm.cgi setsysadm function failing to correctly validate the length of the input data, and can be exploited by a remote attacker t...

9.1CVSS8.1AI score0.00827EPSS
Exploits1References2
NVD
NVDadded 2023/08/15 7:15 p.m.14 views

CVE-2023-38861

An issue in Wavlink WLWNJ575A3 v.R75A3V1410220513 allows a remote attacker to execute arbitrary code via username parameter of the setsysadm function in adm.cgi...

9.8CVSS9.7AI score0.01938EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2023/08/15 7:15 p.m.0 views

CVE-2023-38861

An issue in Wavlink WLWNJ575A3 v.R75A3V1410220513 allows a remote attacker to execute arbitrary code via username parameter of the setsysadm function in adm.cgi...

9.8CVSS6.2AI score0.01938EPSS
Exploits1References2
Rows per page
Query Builder