Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blazej adamczyk vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-10822
Directory traversal vulnerability in the web interface on D-Link DWR-116 up to and including 1.06, DIR-140L up to and including 1.02, DIR-640L up to and including 1.02, DWR-512 up to and including 2.02, DWR-712 up to and including 2.02, DWR-912 up to and including 2.02, DWR-921 u...
Dlink Dwr-116 Firmware
Dlink Dir-140l Firmware
Dlink Dir-640l Firmware
Dlink Dwr-512 Firmware
Dlink Dwr-712 Firmware
Dlink Dwr-912 Firmware
Dlink Dwr-921 Firmware
Dlink Dwr-111 Firmware
1 Article
9.8
CVSSv3
CVE-2018-10824
An issue exists on D-Link DWR-116 up to and including 1.06, DIR-140L up to and including 1.02, DIR-640L up to and including 1.02, DWR-512 up to and including 2.02, DWR-712 up to and including 2.02, DWR-912 up to and including 2.02, DWR-921 up to and including 2.02, and DWR-111 up...
Dlink Dwr-116 Firmware
Dlink Dir-140l Firmware
Dlink Dir-640l Firmware
Dlink Dwr-512 Firmware
Dlink Dwr-712 Firmware
Dlink Dwr-912 Firmware
Dlink Dwr-921 Firmware
Dlink Dwr-111 Firmware
1 Article
8.8
CVSSv3
CVE-2018-10823
An issue exists on D-Link DWR-116 up to and including 1.06, DWR-512 up to and including 2.02, DWR-712 up to and including 2.02, DWR-912 up to and including 2.02, DWR-921 up to and including 2.02, and DWR-111 up to and including 1.01 devices. An authenticated attacker may execute ...
Dlink Dwr-116 Firmware
Dlink Dwr-512 Firmware
Dlink Dwr-912 Firmware
Dlink Dwr-111 Firmware
1 Article
9.8
CVSSv3
CVE-2019-19825
On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be retrieved via an {"topicurl":"setting/getSanvas"} POST to the boafrm/formLogin URI, leading to a CAPTCHA bypass. (Also, the CAPTCHA text is not needed once the attacker has determined valid...
Totolink A3002ru Firmware
Totolink A702r Firmware
Totolink N301rt Firmware
Totolink N302r Firmware
Totolink N300rt Firmware
Totolink N200re Firmware
Totolink N150rt Firmware
Totolink N100re Firmware
7.5
CVSSv3
CVE-2019-19822
A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) allows remote malicious users to retrieve the configuration, including sensitive data (usernames and passwords). This affects TOTOLINK A3002RU up to and including 2.0.0, A702R up to ...
Totolink A3002ru Firmware
Totolink A702r Firmware
Totolink N302r Firmware
Totolink N300rt Firmware
Totolink N200re Firmware
Totolink N150rt Firmware
Totolink N100re Firmware
Realtek Rtk 11n Ap Firmware
Sapido Gr297n Firmware
Ciktel Mesh Router Firmware
Kctvjeju Wireless Ap Firmware
Fg-products Fgn-r2 Firmware
Hiwifi Max-c300n Firmware
Tbroad Gn-866ac Firmware
Coship Emta Ap Firmwre
Iodata Wn-ac1167r Firmwre
Hcn Max-c300n Project Hcn Max-c300n Firmware
Totolink N301rt Firmware
1 Github repository
7.5
CVSSv3
CVE-2019-19823
A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords in flash memory and in a file. This affects TOTOLINK A3002RU up to and including 2.0.0, A702R up to and including 2.1.3, N301RT up to and in...
Totolink A3002ru Firmware
Totolink A702r Firmware
Totolink N302r Firmware
Totolink N300rt Firmware
Totolink N200re Firmware
Totolink N150rt Firmware
Totolink N100re Firmware
Realtek Rtk 11n Ap Firmware
Sapido Gr297n Firmware
Ciktel Mesh Router Firmware
Kctvjeju Wireless Ap Firmware
Fg-products Fgn-r2 Firmware
Hiwifi Max-c300n Firmware
Tbroad Gn-866ac Firmware
Coship Emta Ap Firmwre
Iodata Wn-ac1167r Firmwre
Hcn Max-c300n Project Hcn Max-c300n Firmware
Totolink N301rt Firmware
7.5
CVSSv3
CVE-2020-13449
A directory traversal vulnerability in the Markdown engine of Gotenberg up to and including 6.2.1 allows an malicious user to read any container files.
Thecodingmachine Gotenberg
1 Github repository
9.8
CVSSv3
CVE-2020-13450
A directory traversal vulnerability in file upload function of Gotenberg up to and including 6.2.1 allows an malicious user to upload and overwrite any writable files outside the intended folder. This can lead to DoS, a change to program behavior, or code execution.
Thecodingmachine Gotenberg
1 Github repository
9.8
CVSSv3
CVE-2020-13451
An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg up to and including 6.2.1 allows an malicious user to overwrite LibreOffice configuration files and execute arbitrary code via macros.
Thecodingmachine Gotenberg
1 Github repository
9.8
CVSSv3
CVE-2020-13452
In Gotenberg up to and including 6.2.1, insecure permissions for tini (writable by user gotenberg) potentially allow an malicious user to overwrite the file, which can lead to denial of service or code execution.
Thecodingmachine Gotenberg
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »