|
121
|
3.7 |
LOW
Network
|
-
|
-
|
A vulnerability has been found in CodeWise Tornet Scooter Mobile App 4.75 on iOS/Android. The impacted element is an unknown function of the file /TwoFactor. Such manipulation leads to improper restr…
New
|
CWE-307
CWE-799
mproper Restriction of Excessive Authentication Attempts
Improper Control of Interaction Frequency
|
CVE-2026-7671
|
2026-05-5 00:19 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
122
|
8.8 |
HIGH
Network
|
-
|
-
|
A flaw has been found in Shenzhen Libituo Technology LBT-T300-HW1 up to 1.2.8. This issue affects the function start_single_service of the component Web Management Interface. Executing a manipulation…
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7674
|
2026-05-5 00:19 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
123
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in Shenzhen Libituo Technology LBT-T300-HW1 up to 1.2.8. Impacted is the function start_lan of the file /apply.cgi. The manipulation of the argument Channel/ApCliSsid l…
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7675
|
2026-05-5 00:19 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
124
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in ravenwits mcp-server-arangodb up to 0.4.7. This affects the function arango_backup of the file src/tools.ts of the component MCP Interface. Such manipulation of the …
New
|
CWE-22
Path Traversal
|
CVE-2026-7715
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
125
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in code-projects Gym Management System In PHP and Windows NT 1.0. This vulnerability affects unknown code of the file /index.php. Performing a manipulation of the argument d…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7716
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
126
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in Totolink WA300 5.2cu.7112_B20190227. This issue affects the function UploadCustomModule of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Execu…
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7717
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
127
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in Totolink WA300 5.2cu.7112_B20190227. Impacted is the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation …
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7718
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
128
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A security flaw has been discovered in Totolink WA300 5.2cu.7112_B20190227. The affected element is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The …
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7719
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
129
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in Totolink WA300 5.2cu.7112_B20190227. The impacted element is the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This…
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7720
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
130
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in Totolink WA300 5.2cu.7112_B20190227. This affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument hostTi…
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7721
|
2026-05-5 00:18 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
