CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-5628

Malware in sbrugna...

9.3CVSS8.2AI score0.04024EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-19744

Malware in sbrugna...

5.4CVSS5.6AI score0.0018EPSS

Exploits3References3

NVD•added 2025/01/16 7:15 p.m.•12 views

CVE-2024-57677

An access control issue in the component form2Wan.cgi of D-Link 816A2FWv1.10CNB05R1B011D88210 allows unauthenticated attackers to set the wan service of the device via a crafted POST request...

6.5CVSS0.00295EPSS

Exploits0References2

OSV•added 2025/01/16 7:15 p.m.•3 views

CVE-2024-57677

An access control issue in the component form2Wan.cgi of D-Link 816A2FWv1.10CNB05R1B011D88210 allows unauthenticated attackers to set the wan service of the device via a crafted POST request...

6.5CVSS5.8AI score

Exploits0References2

Vulnrichment•added 2025/01/16 12:0 a.m.•5 views

CVE-2024-57677

An access control issue in the component form2Wan.cgi of D-Link 816A2FWv1.10CNB05R1B011D88210 allows unauthenticated attackers to set the wan service of the device via a crafted POST request...

6.8AI score0.00295EPSS

Exploits0References2

Positive Technologies•added 2024/12/30 12:0 a.m.•2 views

PT-2025-3535 · D Link · D-Link 816

Name of the Vulnerable Software and Affected Versions: D-Link 816A2 FWv1.10CNB05 R1B011D88210 Description: An access control issue in the component form2Wan.cgi of D-Link devices allows unauthenticated attackers to configure the WAN service of the device via a crafted POST request to the...

10CVSS9.3AI score0.00295EPSS

Exploits0References8

NVD•added 2020/10/23 5:15 a.m.•32 views

CVE-2018-8062

A cross-site scripting XSS vulnerability on Comtrend AR-5387un devices with A731-410JAZ-C04R02.A2pD035g.d23i firmware allows remote attackers to inject arbitrary web script or HTML via the Service Description parameter while creating a WAN service...

5.4CVSS0.0018EPSS

Exploits3References1

Prion•added 2020/10/23 5:15 a.m.•13 views

Cross site scripting

3.5CVSS5.3AI score0.0018EPSS

Exploits3References1Affected Software1

CVE•added 2020/10/23 4:27 a.m.•75 views

CVE-2018-8062

CVE-2018-8062 affects the Comtrend AR-5387un router family (firmware A731-410JAZ-C04_R02.A2pD035g.d23i). The vulnerability is an XSS flaw in the WAN Service Description parameter during WAN service creation, enabling injection of arbitrary script/HTML. Public sources describe a persistent XSS var...

5.4CVSS5.3AI score0.0018EPSS

Exploits3References1Affected Software1

Cvelist•added 2020/10/23 4:27 a.m.•37 views

CVE-2018-8062

5.3AI score0.0018EPSS

Exploits3References1

Exploit DB•added 2020/10/20 12:0 a.m.•456 views

Comtrend AR-5387un router - Persistent XSS (Authenticated)

!/usr/bin/env python3 -- coding: utf-8 -- """ Exploit Title: Persistent XSS on Comtrend AR-5387un router Date: 19/10/2020 Exploit Author: OscarAkaElvis Vendor Homepage: https://www.comtrend.com/ Version: Comtrend AR-5387un router Tested on: Software/Firmware version A731-410JAZ-C04R02.A2pD035g.d2...

5.4CVSS5.6AI score0.0018EPSS

Exploits3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by