Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

138 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:39 p.m.8 views

CVE-2023-29803

TOTOLINK X18 V9.1.0cu.2024B20220329 was discovered to contain a command injection vulnerability via the pid parameter in the disconnectVPN function...

9.8CVSS8AI score0.14899EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:38 p.m.5 views

CVE-2023-29800

TOTOLINK X18 V9.1.0cu.2024B20220329 was discovered to contain a command injection vulnerability via the FileName parameter in the UploadFirmwareFile function...

9.8CVSS8AI score0.14899EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:38 p.m.5 views

CVE-2023-29798

TOTOLINK X18 V9.1.0cu.2024B20220329 was discovered to contain a command injection vulnerability via the command parameter in the setTracerouteCfg function...

9.8CVSS8AI score0.14899EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:38 p.m.7 views

CVE-2023-29802

TOTOLINK X18 V9.1.0cu.2024B20220329 was discovered to contain a command injection vulnerability via the ip parameter in the setDiagnosisCfg function...

9.8CVSS8AI score0.14899EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/07 9:18 a.m.15 views

CVE-2025-1829

A vulnerability was found in TOTOLINK X18 9.1.0cu.2024B20220329. It has been declared as critical. This vulnerability affects the function setMtknatCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument mtkhnatEnable leads to os command injection. The attack can be initiated...

8.8CVSS7.2AI score0.00824EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/07 9:18 a.m.8 views

CVE-2025-1339

A vulnerability was found in TOTOLINK X18 9.1.0cu.2024B20220329. It has been rated as critical. This issue affects the function setL2tpdConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument enable leads to os command injection. The attack may be initiated remotely. The exploit...

8.8CVSS7.2AI score0.0008EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/07 9:11 a.m.11 views

CVE-2025-1340

A vulnerability classified as critical has been found in TOTOLINK X18 9.1.0cu.2024B20220329. Affected is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi. The manipulation as part of String leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit...

9CVSS6.9AI score0.01117EPSS
Exploits0References1
CNVD
CNVDadded 2025/10/13 12:0 a.m.3 views

TOTOLINK X18 setEasyMeshAgentCfg function mac parameter command injection vulnerability

TOTOLINK X18 is a Mesh WiFi 6 router system from TOTOLINK Taiwan, which supports WiFi 6 technology and optimizes home network coverage through the mesh function. TOTOLINK X18 suffers from a command injection vulnerability that stems from the mac parameter in the setEasyMeshAgentCfg function faili...

9.8CVSS8AI score0.0361EPSS
Exploits1References1
CNVD
CNVDadded 2025/10/13 12:0 a.m.9 views

TOTOLINK X18 setEasyMeshAgentCfg Function Command Injection Vulnerability

TOTOLINK X18 is a Mesh WiFi 6 router system from TOTOLINK Taiwan, which supports WiFi 6 technology and optimizes home network coverage through the mesh function. TOTOLINK X18 suffers from a command injection vulnerability that stems from the failure of the agentName parameter in the...

9.8CVSS8AI score0.02731EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEVadded 2025/10/09 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-1829

A vulnerability was found in TOTOLINK X18 9.1.0cu.2024B20220329. It has been declared as critical. This vulnerability affects the function setMtknatCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument mtkhnatEnable leads to os command injection. The attack can be initiated...

8.8CVSS5.5AI score0.00824EPSS
In wildExploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-33338

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.14899EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-11873

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00444EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-32018

Malicious code in bioql PyPI...

6.6AI score0.0361EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-5854

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00824EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-2111

Malicious code in bioql PyPI...

9CVSS8.8AI score0.01117EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-33336

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.14899EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-2110

Malicious code in bioql PyPI...

8.8CVSS6.9AI score0.0008EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-14824

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.03395EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-32015

Malicious code in bioql PyPI...

6.6AI score0.02731EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-33339

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.14899EPSS
Exploits1References1
Rows per page
Query Builder