Aggregator

A vulnerability, which was classified as critical, has been found in Totolink A7100RU 7.4cu.2313_b20191024. Impacted is the function CsteSystem of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument resetFlags results in os command injection. This vulnerability was named CVE-2026-5677. The attack may be initiated remotely. In addition, an exploit is available.

Submit #792648 / VDB-250461

Submit #792647 / VDB-250461

Submit #792646 / VDB-250461

Submit #792645 / VDB-250463

Submit #792641 / VDB-250462

Submit #792640 / VDB-252400

Submit #792639 / VDB-252400

Submit #792638 / VDB-250462

Submit #792637 / VDB-250463

A vulnerability classified as critical was found in Totolink A8000R 5.9c.681_B20180413. This issue affects the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument langType leads to missing authentication. This vulnerability is uniquely identified as CVE-2026-5676. The attack can be launched remotely. Moreover, an exploit is present. Restrictive firewalling should be applied.

Submit #792636 / VDB-250459

Submit #792635 / VDB-250461

Submit #792634 / VDB-250461

Submit #792633 / VDB-250463

Submit #792632 / VDB-250461

Submit #792631 / VDB-250459

Submit #792608 / VDB-355505

Submit #792606 / VDB-355504

A vulnerability classified as problematic has been found in Keycloak on Red Hat. This vulnerability affects unknown code of the component JWT Handler. This manipulation of the argument azp causes origin validation error. This vulnerability is handled as CVE-2026-37977. The attack can be initiated remotely. There is not any exploit available.