Skip to main content
CVE-2023-4414 CRITICAL POC THREAT Act Now

A vulnerability was found in Byzoro Smart S85F Management Platform up to 20230807. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Smart S85F
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
17.8%
CVE-2023-4412 CRITICAL POC Act Now

A vulnerability was found in TOTOLINK EX1200L EN_V9.3.5u.6146_B20201023 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ex1200L Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
3.3%
CVE-2023-4411 CRITICAL POC Act Now

A vulnerability has been found in TOTOLINK EX1200L EN_V9.3.5u.6146_B20201023 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ex1200L Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
4.6%
CVE-2023-4410 CRITICAL POC Act Now

A vulnerability, which was classified as critical, was found in TOTOLINK EX1200L EN_V9.3.5u.6146_B20201023. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ex1200L Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
3.3%
CVE-2023-4407 CRITICAL POC Act Now

A vulnerability classified as critical was found in Codecanyon Credit Lite 1.5.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Credit Lite
NVD VulDB Exploit-DB
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-40175 CRITICAL PATCH Act Now

Puma is a Ruby/Rack web server built for parallelism. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This HTTP Request/Response Smuggling vulnerability could allow attackers to manipulate HTTP request interpretation between frontend and backend servers.

Information Disclosure Request Smuggling Puma
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-40174 CRITICAL PATCH Act Now

Social media skeleton is an uncompleted/framework social media project implemented using a php, css ,javascript and html. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Social Media Skeleton
NVD GitHub
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-40069 CRITICAL Act Now

OS command injection vulnerability in ELECOM wireless LAN routers allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Wrc F1167Acf Firmware Wrc 1750Ghbk Firmware Wrc 1167Ghbk2 Firmware Wrc 1750Ghbk2 I Firmware +1
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2023-39454 CRITICAL Act Now

Buffer overflow vulnerability exists in ELECOM wireless LAN routers, which may allow an unauthenticated attacker to execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Wrc X1800Gs B Firmware Wrc X1800Gsa B Firmware Wrc X1800Gsh B Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-35991 CRITICAL Act Now

Hidden functionality vulnerability in LOGITEC wireless LAN routers allows an unauthenticated attacker to log in to the product's certain management console and execute arbitrary OS commands. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Lan Wh300Andgpe Firmware Lan Wh300N Dgp Firmware Lan Wh300An Dgp Firmware Lan Wh450N Gp Firmware +3
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-32626 CRITICAL Act Now

Hidden functionality vulnerability in LAN-W300N/RS all versions, and LAN-W300N/PR5 all versions allows an unauthenticated attacker to log in to the product's certain management console and execute. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Lan W300N Rs Firmware Lan W300N Pr5 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-39674 CRITICAL Act Now

D-Link DIR-880 A1_FW107WWb08 was discovered to contain a buffer overflow via the function fgets. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow D-Link Dir 880L A1 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-39673 CRITICAL Act Now

Tenda AC15 V1.0BR_V15.03.05.18_multi_TD01 was discovered to contain a buffer overflow via the function FUN_00010e34(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Ac15 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-39672 CRITICAL Act Now

Tenda WH450 v1.0.0.18 was discovered to contain a buffer overflow via the function fgets. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Wh450A Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-39671 CRITICAL Act Now

D-Link DIR-880 A1_FW107WWb08 was discovered to contain a buffer overflow via the function FUN_0001be68. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow D-Link Dir 880L A1 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-39670 CRITICAL Act Now

Tenda AC6 _US_AC6V1.0BR_V15.03.05.16 was discovered to contain a buffer overflow via the function fgets. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Ac6 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-39668 CRITICAL Act Now

D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the param_2 parameter in the inet_ntoa() function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow D-Link Dir 868l Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.2%
CVE-2023-39667 CRITICAL Act Now

D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the param_2 parameter in the FUN_0000acb4 function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow D-Link Dir 868l Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.2%
CVE-2023-39666 CRITICAL Act Now

D-Link DIR-842 fw_revA_1-02_eu_multi_20151008 was discovered to contain multiple buffer overflows in the fgets function via the acStack_120 and acStack_220 parameters. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow D-Link Dir 842 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-39665 CRITICAL Act Now

D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the acStack_50 parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow D-Link Dir 868l Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy