Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2022-32449
TOTOLINK EX300_V2 V4.0.3c.7484 exists to contain a command injection vulnerability via the langType parameter in the setLanguageCfg function. This vulnerability is exploitable via a crafted MQTT data packet.
Totolink Ex300 V2 Firmware 4.0.3c.7484
10
CVSSv2
CVE-2022-25046
A path traversal vulnerability in loader.php of CWP v0.9.8.1122 allows malicious users to execute arbitrary code via a crafted POST request.