|
1921
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9458
|
2026-05-27 03:59 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1922
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in Totolink CA750-PoE 6.2c.510. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Performin…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9512
|
2026-05-27 03:59 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1923
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in Totolink CA750-PoE 6.2c.510. This issue affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulat…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9513
|
2026-05-27 03:59 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1924
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. Impacted is the function setNetworkDiag of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation …
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9514
|
2026-05-27 03:59 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1925
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in Totolink CA750-PoE 6.2c.510. The affected element is the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9515
|
2026-05-27 03:59 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1926
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. The affected element is the function setUploadUserData of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Su…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9532
|
2026-05-27 03:59 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1927
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in Totolink CA750-PoE 6.2c.510. The impacted element is the function recvUpgradeNewFw of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Performing a mani…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9533
|
2026-05-27 03:59 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1928
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the arg…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9534
|
2026-05-27 03:59 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1929
|
8.8 |
HIGH
Network
|
concretecms
|
concrete_cms
|
Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/express/association/reorder. The Concrete CMS security team gave this vulnerability a CVS…
|
CWE-352
CWE-1275
Origin Validation Error
Sensitive Cookie with Improper SameSite Attribute
|
CVE-2026-8415
|
2026-05-27 03:58 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1930
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. Impacted is an unknown function of the file /admin/patients/view_history.php. The manipulation o…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9342
|
2026-05-27 03:56 |
2026-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
