Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2026/04/19 5:15 a.m.2 views

CVE-2026-6559 Wavlink WL-WN579A3 login.cgi sub_401F80 cross site scripting

A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub401F80 of the file /cgi-bin/login.cgi. This manipulation of the argument Hostname causes cross site scripting. Remote exploitation of the attack is possible. Upgrading the affected component is recommended...

5.3CVSS4.5AI score0.00039EPSS
Exploits0References5
CVE
CVEadded 2026/04/19 5:15 a.m.9 views

CVE-2026-6559

The CVE affects Wavlink WL-WN579A3 (firmware 220323). The vulnerability resides in login.cgi, function sub_401F80, where manipulating the Hostname argument enables cross-site scripting. Remote exploitation is possible. A fix has been released by the vendor; upgrading to the affected component’s f...

5.3CVSS4.5AI score0.00039EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/02/16 2:2 a.m.26 views

CVE-2026-2529 Wavlink WL-WN579A3 wireless.cgi DeleteMac command injection

A security flaw has been discovered in Wavlink WL-WN579A3 up to 20210219. Affected by this issue is the function DeleteMac of the file /cgi-bin/wireless.cgi. The manipulation of the argument deletelist results in command injection. The attack can be executed remotely. The vendor was contacted ear...

6.5CVSS0.00412EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/02/16 2:2 a.m.4 views

CVE-2026-2528

A vulnerability was identified in Wavlink WL-WN579A3 up to 20210219. Affected by this vulnerability is the function DeleteMaclist of the file /cgi-bin/wireless.cgi. The manipulation of the argument deletelist leads to command injection. Remote exploitation of the attack is possible. The exploit i...

6.5CVSS5.3AI score0.00412EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2026/02/16 1:2 a.m.14 views

CVE-2026-2526

CVE-2026-2526 affects Wavlink WL-WN579A3 (up to 20210219). The issue is in /cgi-bin/wireless.cgi, multi_ssid function; manipulating SSID2G2 enables command injection. Exploitation can be remote; exploit publicly released. Vendor has not responded. References indicate remediation guidance: upgrade...

8.8CVSS6.3AI score0.00377EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/02/16 12:0 a.m.5 views

PT-2026-8301

Name of the Vulnerable Software and Affected Versions Wavlink WL-WN579A3 versions up to 20210219 Description A command injection issue exists in the file /cgi-bin/login.cgi. Manipulating the key argument can allow for remote code execution. The vulnerability has been publicly disclosed. The vendo...

6.5CVSS6.6AI score0.00412EPSS
Exploits1References9
OSV
OSVadded 2025/05/20 9:15 p.m.3 views

CVE-2025-44882

A command injection vulnerability in the component /cgi-bin/firewall.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6AI score0.14457EPSS
Exploits1References1
Rows per page
Query Builder