CVE-2026-2017
IP-COM W30AP is affected up to version 1.0.0.11(1340). The vulnerability resides in the R7WebsSecurityHandler of the POST Request Handler at /goform/wx3auth, where manipulating the data argument causes a stack-based buffer overflow. It can be triggered remotely and the exploit is publicly availab...