Lucene search
+L

31 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-38895

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00393EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.6 views

D-Link DAR-7000 安全漏洞

D-Link DAR-7000 is an Internet behavior auditing gateway from China Youxun D-Link. A security vulnerability exists in the D-Link DAR-7000-40 V31R02B1413C version, which stems from an incorrect operation of the parameter file can lead to unrestricted uploads...

9.8CVSS6.5AI score0.02469EPSS
Exploits0References6
OSV
OSV
added 2023/06/12 1:15 p.m.5 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

4.8CVSS6.1AI score0.00393EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/06/12 1:15 p.m.7 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

4.8CVSS6.2AI score0.00393EPSS
Exploits1References2
NVD
NVD
added 2023/06/12 1:15 p.m.11 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

4.8CVSS5.1AI score0.00393EPSS
Exploits1References1
Prion
Prion
added 2023/06/12 1:15 p.m.17 views

Cross site scripting

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

4.3CVSS5.1AI score0.00393EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/06/12 12:0 a.m.54 views

CVE-2023-34855

CVE-2023-34855 is an XSS in Youxun Electronic Equipment (Shanghai) Co., Ltd AC Centralized Management Platform v1.02.040. The vulnerability allows an attacker to upload a crafted HTML file via the upfile.cgi interface, resulting in arbitrary code execution within the affected platform. The issue ...

4.8CVSS5.1AI score0.00393EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/12 12:0 a.m.7 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

6.2AI score0.00393EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/06/12 12:0 a.m.21 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

5.3AI score0.00393EPSS
Exploits1References1
CNVD
CNVD
added 2023/03/31 12:0 a.m.31 views

D-Link DIR-3040 Buffer Overflow Vulnerability

D-Link DIR-3040 is a router from China Youxun D-Link Inc. The D-Link DIR-3040 is vulnerable to a buffer overflow vulnerability caused by a failure to properly boundary check the MiniDLNA service. An attacker could exploit this vulnerability to execute arbitrary code on the system...

8.8CVSS9.1AI score0.00923EPSS
Exploits0References1
CNVD
CNVD
added 2023/03/15 12:0 a.m.38 views

D-Link DIR-867 Command Injection Vulnerability

The D-Link DIR-867 is a wireless router from China Youxun D-Link.A command injection vulnerability exists in the D-Link DIR-867, which is caused by a command injection vulnerability in the SetVirtualServerSettings function. By sending a carefully crafted request using the LocalIPAddress parameter...

9.8CVSS9.8AI score0.02524EPSS
Exploits0References1
CNVD
CNVD
added 2022/12/27 12:0 a.m.24 views

D-Link DIR-882 Buffer Overflow Vulnerability (CNVD-2023-21659)

The D-Link DIR-882 is a wireless router from China Youxun D-Link.The D-Link DIR-882 is vulnerable to a buffer overflow vulnerability that originates from a discovery containing a stack overflow via the Key parameter in the SetWLanRadioSecurity module. No detailed vulnerability details are current...

7.2CVSS7.1AI score0.01645EPSS
Exploits0References1
CNVD
CNVD
added 2022/12/27 12:0 a.m.24 views

D-Link DIR-882 Buffer Overflow Vulnerability

D-Link DIR-882 is a wireless router from China Youxun D-Link.D-Link DIR-882 DIR882A1FW130B06 has a security vulnerability that stems from a PSK parameter found through the SetQuickVPNSettings module that contains a stack overflow. No detailed vulnerability details are currently available...

7.2CVSS3.2AI score0.01414EPSS
Exploits0References1
CNVD
CNVD
added 2022/12/20 12:0 a.m.72 views

D-Link DIR-3040 Command Injection Vulnerability

D-Link DIR-3040 is a router from China Youxun D-Link. It provides the function of connecting to the network. D-Link DIR-3040 has a command injection vulnerability, which stems from the SetTriggerLEDBlink function fails to properly filter the construct command special characters, commands, etc. An...

9.6AI score0.03945EPSS
Exploits1
CNVD
CNVD
added 2022/12/06 12:0 a.m.20 views

D-Link DVG-G5402SP Access Control Error Vulnerability

D-Link DVG-G5402SP is a wireless router from China Youxun D-Link. The D-Link DVG-G5402SP is vulnerable to an access control error, which can be exploited by an unauthenticated attacker to achieve elevated privileges by editing arbitrary VoIP SIB files...

9.3AI score0.01115EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/03/29 12:0 a.m.23 views

D-Link Dir-820L Remote Command Execution Vulnerability

D-Link Dir-820L is a dual-band wireless router from China's Youxun D-Link.D-Link DIR-820L 1.05B03 has a security vulnerability, and no details of the vulnerability are available...

9.8CVSS3.4AI score0.81099EPSS
Exploits1References1
CNVD
CNVD
added 2022/02/21 12:0 a.m.15 views

D-Link Dir-823-Pro Command Injection Vulnerability (CNVD-2022-15175)

D-Link Dir-823-Pro is a dual-band smart wireless router from China Youxun D-Link. D-Link DIR-823-Pro v1.0.2 is vulnerable to command injection, which can be exploited by attackers to execute arbitrary commands via the sambaname parameter...

9.8CVSS6.7AI score0.03818EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/21 12:0 a.m.25 views

D-Link Dir-823-Pro Command Injection Vulnerability (CNVD-2022-15177)

D-Link Dir-823-Pro is a dual-band smart wireless router from China Youxun D-Link. D-Link DIR-823-Pro v1.0.2 contains a command injection vulnerability, which can be exploited by attackers to execute arbitrary commands via the stationaccessenable parameter...

9.8CVSS6.8AI score0.03818EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/21 12:0 a.m.20 views

D-Link Dir-823-Pro Command Injection Vulnerability

D-Link Dir-823-Pro is a dual-band smart wireless router from China Youxun D-Link. D-Link DIR-823-Pro 1.0.2 is vulnerable to command injection, which can be exploited by attackers to execute arbitrary commands via the tomographypingaddress, tomographypingnumber, tomographypingsize,...

9.8CVSS6.6AI score0.0385EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/21 12:0 a.m.20 views

D-Link DIR-882 Command Injection Vulnerability

The D-Link DIR-882 is a gigabit enterprise router from China Youxun D-Link. The D-Link DIR-882 suffers from a command injection vulnerability, which can be exploited by attackers to execute arbitrary commands via crafted HNAP1 POST requests...

9.8CVSS7.1AI score0.03715EPSS
Exploits0References1
Rows per page
Query Builder