Lucene search
K
NucleiRecent

4143 matches found

Nuclei
Nuclei
•added 2026/07/07 4:50 p.m.•262 views

WordPress File Upload <= 4.24.11 - Arbitrary File Read

The WordPress File Upload plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 4.24.11 via wfufiledownloader.php. This makes it possible for unauthenticated attackers to read or delete files outside of the originally intended directory. Successful exploitatio...

9.8CVSS7.3AI score0.92319EPSS
Exploits4References7
Nuclei
Nuclei
•added 2026/07/07 4:50 p.m.•198 views

XML-RPC Server - Remote Code Execution

The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, and 3.3.x before 3.3.3 allows remote authenticated users to execute arbitrary commands via a crafted XML-RPC request, related to nested supervisor namespace lookups. id: CVE-2017-11610 info: name: XML-RPC Serve...

9CVSS7.5AI score0.87544EPSS
Exploits10References5
Nuclei
Nuclei
•added 2026/07/07 4:50 p.m.•74 views

Progress Software WhatsUp Gold GetFileWithoutZip Directory Traversal - Remote Code Execution

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Progress Software WhatsUp Gold. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of GetFileWithoutZip method. The issue results from th...

9.8CVSS7.8AI score0.99288EPSS
Exploits1References5
Nuclei
Nuclei
•added 2026/07/07 3:1 a.m.•81 views

Sunhillo SureLine <8.7.0.1.1 - Unauthenticated OS Command Injection

Sunhillo SureLine 8.7.0.1.1 is vulnerable to OS command injection. The /cgi/networkDiag.cgi script directly incorporated user-controllable parameters within a shell command, allowing an attacker to manipulate the resulting command by injecting valid OS command input. The following POST request...

10CVSS7.4AI score0.97599EPSS
Exploits1References5
Nuclei
Nuclei
•added 2026/07/07 3:1 a.m.•20 views

CWP (Control Web Panel) < 0.9.8.1205 - Remote Code Execution

CWP Control Web Panel 0.9.8.1205 contains a remote code execution caused by shell metacharacters in the ttotal parameter in filemanager changePerm request, letting unauthenticated attackers execute code remotely, exploit requires knowledge of a valid non-root username. id: CVE-2025-48703 info:...

9CVSS8AI score0.99589EPSS
Exploits3References2
Nuclei
Nuclei
•added 2026/07/07 3:1 a.m.•36 views

Zoho ManageEngine ServiceDesk Plus - Authentication Bypass

Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass that allows a few REST-API URLs without authentication. id: CVE-2021-37415 info: name: Zoho ManageEngine ServiceDesk Plus - Authentication Bypass author: daffainfo,jjcho severity: critical description: | Zoho...

9.8CVSS7.2AI score0.99854EPSS
Exploits0References2
Nuclei
Nuclei
•added 2026/07/07 3:1 a.m.•100 views

GeoServer RCE in Evaluating Property Name Expressions

In the GeoServer version prior to 2.25.1, 2.24.3 and 2.23.5 of GeoServer, multiple OGC request parameters allow Remote Code Execution RCE by unauthenticated users through specially crafted input against a default GeoServer installation due to unsafely evaluating property names as XPath expression...

9.8CVSS7.3AI score0.99813EPSS
Exploits25References4
Nuclei
Nuclei
•added 2026/07/07 3:1 a.m.•594 views

Drupal - Remote Code Execution

Drupal 7.x and 8.x contain a remote code execution vulnerability that exists within multiple subsystems. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being compromised. This vulnerability is related to Drupal core - Highly...

9.8CVSS7.7AI score0.99236EPSS
Exploits14References5
Nuclei
Nuclei
•added 2026/07/06 3:2 a.m.•92 views

Ivanti EPM - Credential Coercion Vulnerability in GetHashForWildcardRecursive

A vulnerability in Ivanti Endpoint Manager EPM allows an unauthenticated attacker to coerce the EPM machine account credential via the GetHashForWildcardRecursive endpoint. The vulnerability exists due to improper input validation in the wildcard parameter, allowing an attacker to specify a remot...

9.8CVSS7.4AI score0.99762EPSS
Exploits1References2
Nuclei
Nuclei
•added 2026/07/06 3:2 a.m.•66 views

Oracle Fusion - Directory Traversal/Local File Inclusion

Oracle Business Intelligence Enterprise Edition 5.5.0.0.0, 12.2.1.3.0, and 12.2.1.4.0 are vulnerable to local file inclusion vulnerabilities via "getPreviewImage." id: CVE-2020-14864 info: name: Oracle Fusion - Directory Traversal/Local File Inclusion author: Ivo Palazzolo @palaziv severity: high...

7.8CVSS7.1AI score0.97233EPSS
Exploits2References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•147 views

Juniper Devices - Remote Code Execution

Multiple cves in Juniper Network CVE-2023-36844|CVE-2023-36845|CVE-2023-36846|CVE-2023-36847.A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to control certain, important environments variables...

9.8CVSS7AI score0.94205EPSS
Exploits28References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•17 views

WordPress Sexy Contact Form (<= 0.9.7) - Arbitrary File Upload

Unrestricted file upload vulnerability in server/php/UploadHandler.php in the jQuery File Upload Plugin 6.4.4 for jQuery, as used in the Creative Solutions Creative Contact Form formerly Sexy Contact Form before 1.0.0 for WordPress and before 2.0.1 for Joomla!, allows remote attackers to execute...

9.8CVSS7.6AI score0.91656EPSS
Exploits2References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•193 views

PAN-OS Management Web Interface - Authentication Bypass

An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit other authenticated privilege...

9.8CVSS7.3AI score0.99698EPSS
Exploits18References3
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•23 views

Pandora v7.0NG.777.3 - Remote Code Execution

Arbitrary commands execution on the server by exploiting a command injection vulnerability in the LDAP authentication mechanism.This issue affects Pandora FMS- from 700 through =777.4 id: CVE-2024-11320 info: name: Pandora v7.0NG.777.3 - Remote Code Execution author: DhiyaneshDK,Shubham...

9.8CVSS7.3AI score0.9123EPSS
Exploits2References2
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•135 views

Zyxel NAS326 Firmware < V5.21(AAZF.17)C0 - NsaRescueAngel Backdoor Account

The command injection vulnerability in the CGI program "remotehelp-cgi" in Zyxel NAS326 firmware versions before V5.21AAZF.17C0 and NAS542 firmware versions before V5.21ABAG.14C0 could allow an unauthenticated attacker to execute some operating system OS commands by sending a crafted HTTP POST...

9.8CVSS7.5AI score0.89218EPSS
Exploits2References2
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•55 views

Palo Alto Expedition - Admin Account Takeover

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. id: CVE-2024-5910 info: name: Palo Alto Expedition - Admin Account Takeover author: johnk3r severity: critical...

9.8CVSS7.4AI score0.91783EPSS
Exploits9References3
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•421 views

MantisBT <=2.30 - Arbitrary Password Reset/Admin Access

MantisBT through 2.3.0 allows arbitrary password reset and unauthenticated admin access via an empty confirmhash value to verify.php. id: CVE-2017-7615 THIS TEMPLATE IS ONLY FOR DETECTING To carry out further attacks, please see reference2 below. This template works by guessing user ID. MantisBT...

8.8CVSS7.3AI score0.90856EPSS
Exploits10
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•18 views

Fortinet FortiWeb - SQL Injection

An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 in FortiWeb may allow an unauthenticated attacker to execute unauthorized SQL code or commands via crafted HTTP or HTTPS requests. id: CVE-2025-25257 info: name: Fortinet FortiWeb - SQL...

9.8CVSS7.6AI score0.9671EPSS
Exploits18References2
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•75 views

ZeroShell <= 1.0beta11 Remote Code Execution

ZeroShell 1.0beta11 and earlier via cgi-bin/kerbynet allows remote attackers to execute arbitrary commands through shell metacharacters in the type parameter in a NoAuthREQ x509List action. id: CVE-2009-0545 info: name: ZeroShell = 1.0beta11 Remote Code Execution author: geeknik severity: critica...

10CVSS6.2AI score0.90732EPSS
Exploits2References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•73 views

Node.JS System Information Library <5.3.1 - Remote Command Injection

Node.JS System Information Library System before version 5.3.1 is susceptible to remote command injection. Node.JS npm package "systeminformation" is an open source collection of functions to retrieve detailed hardware, system and OS information. id: CVE-2021-21315 info: name: Node.JS System...

7.8CVSS7.1AI score0.9024EPSS
Exploits4References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•1190 views

Flowise - Remote Code Execution

Flowise 3.0.5 contains a remote code execution vulnerability caused by unsafe evaluation of user input in the CustomMCP node's convertToValidJSONString function, letting remote attackers execute arbitrary code with full Node.js privileges, exploit requires user input to be processed by the...

10CVSS8AI score0.90183EPSS
Exploits21References2
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•103 views

MovableType - Remote Command Injection

MovableType 5002 and earlier Movable Type Advanced 7 Series, Movable Type Advanced 6.8. 2 and earlier Movable Type Advanced 6 Series, Movable Type Premium 1.46 and earlier, and Movable Type Premium Advanced 1.46 and earlier allow remote attackers to execute arbitrary OS commands via unspecified...

9.8CVSS7.5AI score0.88144EPSS
Exploits11References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•96 views

Spring Cloud - Remote Code Execution

Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions are susceptible to remote code execution vulnerabilities. When using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and...

9.8CVSS7.6AI score0.99939EPSS
Exploits36References6
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•96 views

RaspAP 2.8.7 - Unauthenticated Command Injection

A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to execute arbitrary commands via the cfgid parameter in /ajax/openvpn/activateovpncfg.php and /ajax/openvpn/delovpncfg.php. id: CVE-2022-39986 info: name: RaspAP 2.8.7 - Unauthenticated Command Injectio...

9.8CVSS7.4AI score0.98725EPSS
Exploits3References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•82 views

Ivanti EPM - Credential Coercion Vulnerability in GetHashForSingleFile

A vulnerability in Ivanti Endpoint Manager EPM allows an unauthenticated attacker to coerce the EPM machine account credential via the GetHashForSingleFile endpoint. The vulnerability exists due to improper input validation in the wildcard parameter, allowing an attacker to specify a remote UNC...

9.8CVSS7.4AI score0.88518EPSS
Exploits1References2
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•129 views

CrushFTP VFS - Sandbox Escape LFR

VFS Sandbox Escape in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows remote attackers with low privileges to read files from the filesystem outside of VFS Sandbox. id: CVE-2024-4040 info: name: CrushFTP VFS - Sandbox Escape LFR author: DhiyaneshDK,pussycat0x severity:...

10CVSS7.2AI score0.99539EPSS
Exploits22References4
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•29 views

SolarWinds Security Event Manager - Unauthenticated RCE

The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an unauthenticated user to abuse SolarWinds’ service, resulting in remote code execution. id: CVE-2024-0692 info: name: SolarWinds Security Event Manager - Unauthenticated RCE...

8.8CVSS7.6AI score0.91557EPSS
Exploits1References1
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•69 views

Citrix - Local File Inclusion

Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 are vulnerable to local file inclusion because they allow unauthenticated access to certain URL endpoints. id:...

6.5CVSS6.8AI score0.88411EPSS
Exploits5References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•88 views

Sophos UTM Preauth - Remote Code Execution

Sophos SG UTMA WebAdmin is susceptible to a remote code execution vulnerability in versions before v9.705 MR5, v9.607 MR7, and v9.511 MR11. id: CVE-2020-25223 info: name: Sophos UTM Preauth - Remote Code Execution author: gy741 severity: critical description: Sophos SG UTMA WebAdmin is susceptibl...

10CVSS8AI score0.96693EPSS
Exploits9References5
Nuclei
Nuclei
•added 2026/07/03 1:39 p.m.•43 views

LinuxKI Toolset <= 6.01 - Remote Command Execution

LinuxKI v6.0-1 and earlier are vulnerable to remote code execution. id: CVE-2020-7209 info: name: LinuxKI Toolset = 6.01 - Remote Command Execution author: dwisiswant0 severity: critical description: LinuxKI v6.0-1 and earlier are vulnerable to remote code execution. impact: | Successful...

9.8CVSS7.5AI score0.98846EPSS
Exploits10References6
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•11 views

Progress ADC LoadMaster - Command Injection

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints id: CVE-2026-8037 info: name: Progress ADC LoadMaste...

9.8CVSS7.9AI score0.4343EPSS
Exploits3References2
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•15 views

Oracle PeopleSoft PeopleTools PSEMHUB - Pre-Auth Java Deserialization RCE

Oracle PeopleSoft PeopleTools 8.61 and 8.62 contain a remote code execution vulnerability in Updates Environment Management, letting unauthenticated network attackers fully compromise the system, exploit requires network access via HTTP. id: CVE-2026-35273 info: name: Oracle PeopleSoft PeopleTool...

9.8CVSS8.1AI score0.9233EPSS
Exploits3References4
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•105 views

Fortra GoAnywhere MFT - Authentication Bypass

Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal. id: CVE-2024-0204 info: name: Fortra GoAnywhere MFT - Authentication Bypass author: DhiyaneshDK severity: critical description: | Authentication bypas...

9.8CVSS7.6AI score0.95086EPSS
Exploits8References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•11 views

D-Link DIR820LA1_FW105B03 'ping_addr' - OS Command Injection

OS Command injection vulnerability in D-Link DIR820LA1FW105B03 allows attackers to escalate privileges to root via a crafted payload with the pingaddr parameter to ping.ccp. id: CVE-2023-25280 info: name: D-Link DIR820LA1FW105B03 'pingaddr' - OS Command Injection author: pussycat0x severity:...

9.8CVSS6.9AI score0.98053EPSS
Exploits1References2
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•52 views

Oracle Fusion Middleware WebLogic Server Administration Console - Remote Code Execution

The Oracle Fusion Middleware WebLogic Server admin console in versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0 is vulnerable to an easily exploitable vulnerability that allows high privileged attackers with network access via HTTP to compromise Oracle WebLogic Server. id:...

9CVSS7.5AI score0.97929EPSS
Exploits8References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•151 views

Ivanti Cloud Services Appliance - Path Traversal

Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted functionality. id: CVE-2024-8963 info: name: Ivanti Cloud Services Appliance - Path Traversal author: johnk3r severity: critical description: | Path Traversal in the Ivanti CSA befo...

9.4CVSS7.7AI score0.98557EPSS
Exploits2References3
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•95 views

Progress Kemp Flowmon - Command Injection

In Flowmon versions prior to 11.1.14 and 12.3.5, an operating system command injection vulnerability has been identified. An unauthenticated user can gain entry to the system via the Flowmon management interface, allowing for the execution of arbitrary system commands. id: CVE-2024-2389 info: nam...

10CVSS7.5AI score0.93901EPSS
Exploits7References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•98 views

Ollama - Remote Code Execution

Ollama before 0.1.34 does not validate the format of the digest sha256 with 64 hex digits when getting the model path, and thus mishandles the TestGetBlobsPath test cases such as fewer than 64 hex digits, more than 64 hex digits, or an initial ../ substring. id: CVE-2024-37032 info: name: Ollama ...

8.8CVSS7AI score0.89633EPSS
Exploits4References3
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•86 views

Oracle WebLogic Server Local File Inclusion

An easily exploitable local file inclusion vulnerability allows unauthenticated attackers with network access via HTTP to compromise Oracle WebLogic Server. Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Successful attacks of this vulnerability can...

7.5CVSS6.8AI score0.92331EPSS
Exploits6References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•153 views

Symmetricom SyncServer Unauthenticated - Remote Command Execution

Microchip Technology Microsemi SyncServer S650 was discovered to contain a command injection vulnerability. id: CVE-2022-40022 info: name: Symmetricom SyncServer Unauthenticated - Remote Command Execution author: DhiyaneshDK,mielverkerken severity: critical description: | Microchip Technology...

9.8CVSS7.3AI score0.92472EPSS
Exploits3References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•147 views

Apache Tapestry - Remote Code Execution

Apache Tapestry contains a critical unauthenticated remote code execution vulnerability. Affected versions include 5.4.5, 5.5.0, 5.6.2 and 5.7.0. Note that this vulnerability is a bypass of the fix for CVE-2019-0195. Before that fix it was possible to download arbitrary class files from the...

10CVSS8AI score0.94089EPSS
Exploits5References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•41 views

Laravel Livewire v3 - Remote Command Execution

Livewire v3 Laravel contains a vulnerability in its component hydration/update mechanism that can be exploited to reach remote command execution RCE without authentication under certain conditions. id: CVE-2025-54068 info: name: Laravel Livewire v3 - Remote Command Execution author: flame-11...

9.8CVSS7.7AI score0.95376EPSS
Exploits5References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•14 views

Kentico Xperience 13 CMS - Staging Service Authentication Bypass (WT-2025-0006)

An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server component password handling for the server defined None type. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through...

9.8CVSS6.1AI score0.92161EPSS
Exploits1References4
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•124 views

Cisco ASA - Local File Inclusion

Cisco Adaptive Security Appliances ASA web interfaces could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS condition. It is also possible on certain software releases that the ASA will not reload, but an attacker...

7.5CVSS7.2AI score0.99903EPSS
Exploits18References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•83 views

Rails File Content Disclosure

Rails 5.2.2.1, 5.1.6.2, 5.0.7.2, 4.2.11.1 and v3 are susceptible to a file content disclosure vulnerability because specially crafted accept headers can cause contents of arbitrary files on the target system's file system to be exposed. id: CVE-2019-5418 info: name: Rails File Content Disclosure...

7.5CVSS7.1AI score0.98507EPSS
Exploits18References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•54 views

WordPress Core 5.0.0 - Crop-image Shell Upload

WordPress through 5.0.3 allows Path Traversal in wpcropimage. An attacker who has privileges to crop an image can write the output image to an arbitrary directory via a filename containing two image extensions and ../ sequences, such as a filename ending with the .jpg?/../../file.jpg substring. i...

6.5CVSS7AI score0.91985EPSS
Exploits9References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•82 views

Splunk <=7.0.1 - Information Disclosure

Splunk through 7.0.1 is susceptible to information disclosure by appending raw/services/server/info/server-info?outputmode=json to a query, as demonstrated by discovering a license key. id: CVE-2018-11409 info: name: Splunk =7.0.1 - Information Disclosure author: harshbothra severity: medium...

5.3CVSS6AI score0.98371EPSS
Exploits7References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•115 views

Oturia WordPress Smart Google Code Inserter <3.5 - Authentication Bypass

Oturia Smart Google Code Inserter plugin before 3.5 for WordPress allows unauthenticated attackers to insert arbitrary JavaScript or HTML code via the sgcgoogleanalytic parameter that runs on all pages served by WordPress. The saveGoogleCode function in smartgooglecode.php does not check if the...

9.8CVSS7.6AI score0.91477EPSS
Exploits5References5
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•30 views

Ivanti Avalanche SmartDeviceServer - XML External Entity

XXE in SmartDeviceServer in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to read arbitrary files on the server. id: CVE-2024-38653 info: name: Ivanti Avalanche SmartDeviceServer - XML External Entity author: DhiyaneshDK severity: high description: | XXE in SmartDeviceServer in...

8.2CVSS7.6AI score0.91984EPSS
Exploits1References3
Nuclei
Nuclei
•added 2026/07/02 9:36 a.m.•81 views

TP-Link Archer AX21 (AX1800) - Unauthenticated Command Injection

TP-Link Archer AX21 AX1800 routers are vulnerable to unauthenticated OS command injection via the country parameter in the locale endpoint. This allows remote attackers to execute arbitrary commands as root. id: CVE-2023-1389 info: name: TP-Link Archer AX21 AX1800 - Unauthenticated Command...

8.8CVSS7.8AI score0.99999EPSS
Exploits7References3
Total number of security vulnerabilities4143