CodeAnt AI Vulnerability Database
A comprehensive hub for tracking high-impact vulnerabilities across application code and third-party libraries, for security teams and developers.
CVE-2026-6138
(9.8)
OS Command Injection (CWE-78) in Totolink A7100RU CGI Handler setAccessDeviceCfg
Remote Code Execution on the Router
CVE-2026-6132
(9.8)
OS Command Injection (CWE-78) in Totolink A7100RU CGI setLedCfg Handler
Remote Code Execution on the Router
CVE-2026-6131
(9.8)
OS Command Injection (CWE-78) in Totolink A7100RU CGI setTracerouteCfg Handler
Remote Code Execution on Network Device
CVE-2026-6130
(7.3)
OS Command Injection (CWE-78) in ChatboxAI Model Context Protocol Stdio Transport
Remote Code Execution via OS Command Injection
CVE-2026-6129
(7.3)
Missing Authentication (CWE-287) in CowAgent Agent Mode Service for chatgpt-on-wechat
Unauthorized Access and Action Execution
CVE-2019-25699
(7.1)
SQL Injection (CWE-89) in Newsbull Haber Script Search Parameter
Confidentiality and Integrity Compromise of Application Database
CVE-2019-25697
(8.2)
SQL Injection (CWE-89) via cat_id Parameter in CMSsite 1.0
Authentication Data Exposure and Potential Full Database Compromise
CVE-2026-6126
(7.3)
Missing Authentication (CWE-287) on Administrative HTTP Endpoint in CowAgent 2.0.4
Unauthorized Administrative Access
CVE-2026-6116
(9.8)
OS Command Injection (CWE-78) in Totolink A7100RU CGI Handler setDiagnosisCfg
Remote Code Execution on Network Router
CVE-2026-6115
(9.8)
OS Command Injection (CWE-78) in Totolink A7100RU CGI Handler setAppCfg
Remote Code Execution on Network Device
