Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2025-05-08	CVE-2025-45787	Out-of-bounds Write vulnerability in Totolink A3100R Firmware 5.9C.1527 TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow viathe comment parameter in setIpPortFilterRules. network low complexity totolink CWE-787 critical	9.8
2025-05-08	CVE-2025-45788	Out-of-bounds Write vulnerability in Totolink A3100R Firmware 5.9C.1527 TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the comment parameter in setMacFilterRules. network low complexity totolink CWE-787 critical	9.8
2025-05-08	CVE-2025-45789	Out-of-bounds Write vulnerability in Totolink A3100R Firmware 5.9C.1527 TOTOLINK A3100R V5.9c.1527 is vulnerable to buffer overflow via the urlKeyword parameter in setParentalRules. network low complexity totolink CWE-787 critical	9.8
2025-05-08	CVE-2025-45790	Out-of-bounds Write vulnerability in Totolink A3100R Firmware 5.9C.1527 TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the priority parameter in the setMacQos interface of /lib/cste_modules/firewall.so. network low complexity totolink CWE-787 critical	9.8
2025-05-08	CVE-2025-45797	Out-of-bounds Write vulnerability in Totolink A950Rg Firmware 4.1.2Cu.5204B20210112 TOTOlink A950RG V4.1.2cu.5204_B20210112 contains a buffer overflow vulnerability. network low complexity totolink CWE-787 critical	9.8
2025-05-08	CVE-2025-45798	Command Injection vulnerability in Totolink A950Rg Firmware 4.1.2Cu.5204B20210112 A command execution vulnerability exists in the TOTOLINK A950RG V4.1.2cu.5204_B20210112. network low complexity totolink CWE-77 critical	9.8
2025-05-08	CVE-2025-26845	Code Injection vulnerability in Znuny An Eval Injection issue was discovered in Znuny through 7.1.3. network low complexity znuny CWE-94 critical	9.8
2025-05-08	CVE-2025-45841	Out-of-bounds Write vulnerability in Totolink Nr1800X Firmware 9.1.0U.6681B20230703 TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the text parameter in the setSmsCfg function. network low complexity totolink CWE-787 critical	9.8
2025-05-07	CVE-2025-47548	Server-Side Request Forgery (SSRF) vulnerability in Wbcomdesigns Activity Link Preview for Buddypress Server-Side Request Forgery (SSRF) vulnerability in Varun Dubey Wbcom Designs - Activity Link Preview For BuddyPress allows Server Side Request Forgery. network low complexity wbcomdesigns CWE-918 critical	9.8
2025-05-07	CVE-2025-47635	Server-Side Request Forgery (SSRF) vulnerability in Webinarpress Server-Side Request Forgery (SSRF) vulnerability in WPWebinarSystem WebinarPress allows Server Side Request Forgery. network low complexity webinarpress CWE-918 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical