CVE-2022-36573
A cross-site scripting (XSS) vulnerability in Pagekit CMS v1.0.18 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Markdown text box under /blog/post/edit.
Source: CVE-2022-36573
[월:] 2022년 08월
CVE-2022-36616
CVE-2022-36616
TOTOLINK A810R V4.1.2cu.5182_B20201026 and V5.9c.4050_B20190424 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
Source: CVE-2022-36616
CVE-2022-36615
CVE-2022-36615
TOTOLINK A3000RU V4.1.2cu.5185_B20201128 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
Source: CVE-2022-36615
CVE-2022-36614
CVE-2022-36614
TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
Source: CVE-2022-36614
CVE-2022-36613
CVE-2022-36613
TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
Source: CVE-2022-36613
CVE-2022-36612
CVE-2022-36612
TOTOLINK A950RG V4.1.2cu.5204_B20210112 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
Source: CVE-2022-36612
CVE-2022-38511
CVE-2022-38511
TOTOLINK A810R V5.9c.4050_B20190424 was discovered to contain a command injection vulnerability via the component downloadFile.cgi.
Source: CVE-2022-38511
CVE-2022-38510
CVE-2022-38510
Tenda_TX9pro V22.03.02.10 was discovered to contain a buffer overflow via the component httpd/SetNetControlList.
Source: CVE-2022-38510
CVE-2022-36611
CVE-2022-36611
TOTOLINK A800R V4.1.2cu.5137_B20200730 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
Source: CVE-2022-36611
CVE-2022-36610
CVE-2022-36610
TOTOLINK A720R V4.1.5cu.532_B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
Source: CVE-2022-36610