Lucene search
+L

117 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:55 a.m.7 views

CVE-2023-34356

An OS command injection vulnerability exists in the data.cgi xferdns functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS7.2AI score0.05513EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 3:36 a.m.10 views

CVE-2023-28381

An OS command injection vulnerability exists in the admin.cgi MVPNtrialinit functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS7.2AI score0.05913EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:31 a.m.10 views

CVE-2023-27380

An OS command injection vulnerability exists in the admin.cgi USSDsend functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS7.2AI score0.05749EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:18 a.m.3 views

CVE-2023-23542

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to access user-sensitive data...

5.5CVSS6AI score0.00251EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/05/17 12:0 p.m.5 views

adx (>=4.0.0 <=4.1.0), aicommits-rs (>=0.1.0 <=0.2.0) +301 more potentially affected by unknown CVE via surf (>=1.0.1 <=2.3.2)

surf CARGO version =1.0.1, =4.0.0, =0.1.0, =1.0.0, =0.3.0, =0.10.0, =0.3.0, =0.5.0, =0.1.0, =0.6.0, =0.3.0, =0.1.0, =0.0.1, =0.2.4 - async-bybit =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0036...

5.8AI score
Exploits0
HackRead
HackRead
added 2024/10/20 8:6 p.m.43 views

“HM Surf” macOS Flaw Lets Attackers Access Camera and Mic – Patch Now!

Researchers at Microsoft discovered a new macOS vulnerability, "HM Surf" CVE-2024-44133, which bypasses TCC protections, allowing unauthorized access…...

5.5CVSS6.9AI score0.07052EPSS
Exploits1
Openbugbounty
Openbugbounty
added 2024/03/28 12:56 p.m.8 views

surf-centrum.cz Cross Site Scripting vulnerability OBB-3890427

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/03/27 11:32 a.m.11 views

surf-centrum.cz Cross Site Scripting vulnerability OBB-3888688

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/03/20 11:37 p.m.6 views

surf-centrum.cz Cross Site Scripting vulnerability OBB-3881390

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/03/19 1:21 a.m.6 views

surf-centrum.cz Cross Site Scripting vulnerability OBB-3878125

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/12/13 8:28 p.m.7 views

surf-escapade.com Improper Access Control vulnerability OBB-3812513

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
OSV
OSV
added 2023/10/11 4:15 p.m.4 views

CVE-2023-34356

An OS command injection vulnerability exists in the data.cgi xferdns functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS7.3AI score0.05513EPSS
Exploits1References2
NVD
NVD
added 2023/10/11 4:15 p.m.33 views

CVE-2023-34356

An OS command injection vulnerability exists in the data.cgi xferdns functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS7.6AI score0.05513EPSS
Exploits1References2
NVD
NVD
added 2023/10/11 4:15 p.m.32 views

CVE-2023-35193

An OS command injection vulnerability exists in the api.cgi cmd.mvpn.x509.write functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.This vulnerabilit...

8.8CVSS7.7AI score0.05604EPSS
Exploits1References2
OSV
OSV
added 2023/10/11 4:15 p.m.3 views

CVE-2023-35194

An OS command injection vulnerability exists in the api.cgi cmd.mvpn.x509.write functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.This vulnerabilit...

8.8CVSS5.8AI score0.05604EPSS
Exploits1References2
OSV
OSV
added 2023/10/11 4:15 p.m.6 views

CVE-2023-35193

An OS command injection vulnerability exists in the api.cgi cmd.mvpn.x509.write functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.This vulnerabilit...

8.8CVSS7.3AI score0.05604EPSS
Exploits1References2
OSV
OSV
added 2023/10/11 4:15 p.m.6 views

CVE-2023-34354

A stored cross-site scripting XSS vulnerability exists in the uploadbrand.cgi functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to execution of arbitrary javascript in another user's browser. An attacker can make an authenticated HTTP request to...

5.4CVSS7.4AI score0.0081EPSS
Exploits1References2
NVD
NVD
added 2023/10/11 4:15 p.m.39 views

CVE-2023-34354

A stored cross-site scripting XSS vulnerability exists in the uploadbrand.cgi functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to execution of arbitrary javascript in another user's browser. An attacker can make an authenticated HTTP request to...

5.4CVSS4.4AI score0.0081EPSS
Exploits1References2
NVD
NVD
added 2023/10/11 4:15 p.m.25 views

CVE-2023-35194

An OS command injection vulnerability exists in the api.cgi cmd.mvpn.x509.write functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.This vulnerabilit...

8.8CVSS7.7AI score0.05604EPSS
Exploits1References2
OSV
OSV
added 2023/10/11 4:15 p.m.3 views

CVE-2023-27380

An OS command injection vulnerability exists in the admin.cgi USSDsend functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

8.8CVSS7.3AI score0.05749EPSS
Exploits1References2
Rows per page
Query Builder