CVE-2026-10123

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFilter of the file /goform/formSetDomainFilter. Performing a manipulation of the argument blockeddomain/permitteddomain/blockeddomainlist/permitteddomainlist results in stack-based buffer overflow. It...

CVE-2026-10123

creationtimestamp| type| source ---|---|--- 2026-05-30 17:00:48+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mn3jnjsfjr26 2026-05-30 17:30:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn3ld7z7nr2a...

CVE-2026-10123

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFilter of the file /goform/formSetDomainFilter. Performing a manipulation of the argument blockeddomain/permitteddomain/blockeddomainlist/permitteddomainlist results in stack-based buffer overflow. It...

CVE-2025-10123

A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub415028 of the file /goform/setstaticleases. Executing manipulation of the argument Hostname can lead to command injection. The attack can be launched remotely. The exploit has been...

CVE-2019-10123

SQL Injection in Advanced InfoData Systems AIS ESEL-Server 67 which is the backend for the AIS logistics mobile app allows an anonymous attacker to execute arbitrary code in the context of the user of the MSSQL database. The default user for the database is the 'sa' user...

CVE-2015-10123

An unautheticated remote attacker could send specifically crafted packets to a affected device. If an authenticated user then views that data in a specific page of the web-based management a buffer overflow will be triggered to gain full access of the device...

CVE-2024-10123

A vulnerability was found in Tenda AC8 16.03.34.06. It has been declared as critical. Affected by this vulnerability is the function compareparentcontroltime of the file /goform/saveParentControlInfo. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be...

CVE-2024-10123 Tenda AC8 saveParentControlInfo compare_parentcontrol_time stack-based overflow

A vulnerability was found in Tenda AC8 16.03.34.06. It has been declared as critical. Affected by this vulnerability is the function compareparentcontroltime of the file /goform/saveParentControlInfo. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be...

CVE-2015-10123 Wago: Buffer Copy without Checking Size of Input in wbm of multiple products

An unautheticated remote attacker could send specifically crafted packets to a affected device. If an authenticated user then views that data in a specific page of the web-based management a buffer overflow will be triggered to gain full access of the device...

CVE-2015-10123

CVE-2015-10123 is a buffer overflow vulnerability described for WAGO products (notably the WAGO Controller BACnet family and related 750-3xx, 750-8xx devices). The issue arises from a buffer copy without checking input size in the WBM (web-based management) page, which can be triggered by unauthe...

CVE-2020-10123

Affected product: NCR SelfServ ATMs running APTRA XFS 05.01.00 or older. Vulnerable component: currency dispenser session key generation authentication. Root cause: inadequate authentication for session key generation requests from the host computer, enabling a physical-access attacker to generat...

CVE-2019-10123

CVE-2019-10123 affects AIS AIS logistics ESEL-Server 67 (backend for the AIS mobile app). The issue is an SQL Injection in the ESEL-Server that allows an anonymous attacker to execute arbitrary code with the MSSQL sa context, i.e., a remote RCE over the network. The server typically exposes MSSQL...

CVE-2019-10123

creationtimestamp| type| source ---|---|--- 2019-04-29 19:13:43+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/aiseselserverrce.rb 2019-04-30 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46782 2025-02-06 03:13:43+00:00| seen...

CVE-2018-10123

p910nd on Inteno IOPSYS 2.0 through 4.2.0 allows remote attackers to read, or append data to, arbitrary files via requests on TCP port 9100...

CVE-2018-10123

p910nd on Inteno IOPSYS 2.0 through 4.2.0 allows remote attackers to read, or append data to, arbitrary files via requests on TCP port 9100...

CVE-2018-10123

CVE-2018-10123 affects Inteno IOPSYS p910nd, with vulnerable versions 2.0 through 4.2.0. A remote attacker can connect to TCP port 9100 and read arbitrary files or append data to arbitrary files, enabling information disclosure and, per exploit descriptions, potential remote code execution. Publi...

Inteno IOPSYS 2.0 - 4.2.0 p910nd - Remote Command Execution Exploit

Exploit for hardware platform in category remote exploits ''' Any authenticated user can modify the configuration for it in a way which allows them to read and append to any file as root. This leads to information disclosure and remote code execution. This vulnerability has been assigned the CVE...

Inteno IOPSYS 2.0 - 4.2.0 p910nd Remote Command Execution

''' Any authenticated user can modify the configuration for it in a way which allows them to read and append to any file as root. This leads to information disclosure and remote code execution. This vulnerability has been assigned the CVE ID: CVE-2018-10123. This PoC requires Python 3.6 and a...

Inteno IOPSYS 2.0 < 4.2.0 - 'p910nd' Remote Command Execution

''' Any authenticated user can modify the configuration for it in a way which allows them to read and append to any file as root. This leads to information disclosure and remote code execution. This vulnerability has been assigned the CVE ID: CVE-2018-10123. This PoC requires Python 3.6 and a...

Inteno IOPSYS 2.0 4.2.0 - p910nd Remote Command Execution

Inteno IOPSYS 2.0 4.2.0 - p910nd Remote Command Execution ''' Any authenticated user can modify the configuration for it in a way which allows them to read and append to any file as root. This leads to information disclosure and remote code execution. This vulnerability has been assigned the CVE...