|
581
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A vulnerability was found in Totolink A8000RU 7.1cu.643_b20200521. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the …
New
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-7123
|
2026-04-28 03:36 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
582
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A vulnerability was determined in Totolink A8000RU 7.1cu.643_b20200521. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Exe…
New
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-7124
|
2026-04-28 03:36 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
583
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipu…
New
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-7125
|
2026-04-28 03:36 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
584
|
7.3 |
HIGH
Network
|
-
|
-
|
A security flaw has been discovered in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /ajax.php?action=save_category. The manipulation of the argumen…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7126
|
2026-04-28 03:36 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
585
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=delete_receiving. This manipulation of t…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7127
|
2026-04-28 03:36 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
586
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in SourceCodester Pharmacy Sales and Inventory System 1.0. This issue affects some unknown processing of the file /ajax.php?action=save_type. Such manipulat…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7128
|
2026-04-28 03:36 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
587
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. Impacted is an unknown function of the file /index.php?page=categories. Performing a manipulation of the argume…
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-7129
|
2026-04-28 03:36 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
588
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. The affected element is an unknown function of the file /ajax.php?action=delete_category. Executing a manipulation of …
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7130
|
2026-04-28 03:36 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
589
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in code-projects Online Lot Reservation System up to 1.0. The impacted element is an unknown function of the file /loginuser.php. The manipulation of the argument email…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7131
|
2026-04-28 03:36 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
590
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in code-projects Online Lot Reservation System up to 1.0. This affects the function readfile of the file /download.php. The manipulation of the argument File results in path…
New
|
CWE-22
Path Traversal
|
CVE-2026-7132
|
2026-04-28 03:36 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
