The vulnerability of the setMacFilterRules function in TOTOLINK A3100R router microprogramming software allows a intruder to trigger a service failure.

The vulnerability of the setMacFilterRules function in TOTOLINK A3100R router microprogramming software is related to buffer overflows in the stack when processing the comment parameter. Exploiting this vulnerability can allow an attacker to cause service interruptions by sending specially crafte...

CVE-2025-45788

TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the comment parameter in setMacFilterRules...

CVE-2025-45787

TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow viathe comment parameter in setIpPortFilterRules...

TOTOLINK A3100R 安全漏洞

TOTOLINK A3100R is a series of wireless routers from China's Gion Electronics TOTOLINK. The TOTOLINK A3100R suffers from a buffer overflow vulnerability that stems from the comment parameter in setMacFilterRules failing to correctly validate the length size of the input data, no detailed...

CVE-2025-45788

TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the comment parameter in setMacFilterRules...

TOTOLINK A3100R 安全漏洞

TOTOLINK A3100R is a series of wireless routers from China's Gion Electronics TOTOLINK. The TOTOLINK A3100R suffers from a buffer overflow vulnerability, which originates from the comment parameter in setIpPortFilterRules, that can be exploited by an attacker to crash an application or execute...

CVE-2025-45787

CVE-2025-45787 affects TOTOLINK A3100R (V5.9c.1527). The issue is a buffer overflow in the comment parameter of setIpPortFilterRules, which can crash the application or, per CNVD/CNNVD, potentially allow arbitrary code execution. Public updates on fixes are not provided in the documents; PT-Secur...

CVE-2025-45788

TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the comment parameter in setMacFilterRules...

CVE-2025-3996

A vulnerability was found in TOTOLINK N150RT 3.4.0-B20190525. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /home.htm of the component MAC Filtering Page. The manipulation of the argument Comment leads to cross site scripting. The attack may be...

TOTOLINK N150RT 代码注入漏洞

The TOTOLINK N150RT is a high power wireless router device. TOTOLINK N150RT suffers from a cross-site scripting vulnerability that originates from the parameter Comment in the file /home.htm, no details of the vulnerability are provided at this time...

CVE-2024-46494

Typecho v1.2.1 is affected by a cross-site scripting (XSS) vulnerability in the Name parameter under comments on an Article. The vulnerability allows an attacker to execute arbitrary web scripts or HTML, with exploit requiring user interaction (CVSS: AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N; base 5.4)...

The vulnerability of the setPortForwardRules() function in TOTOLINK CP450 router microprogramming software allows a hacker to trigger a service failure.

The vulnerability of the setPortForwardRules function in TOTOLINK CP450 router microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the comment parameter. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the setIpQosRules() function in TOTOLINK CP450 router software allows a intruder to cause a service failure.

The vulnerability of the setIpQosRules function in TOTOLINK CP450 router software lies in the issue of the operation exceeding the buffer in memory when processing the comment parameter. Exploiting this vulnerability could allow an attacker to cause service interruptions...

PT-2024-39375 · Unknown · Crmgo Saas

Name of the Vulnerable Software and Affected Versions: CodeCanyon CRMGo SaaS versions up to 7.2 Description: A problematic issue has been found in the software, affecting some unknown processing of the file "/project/task/task id/show". The manipulation of the comment argument leads to cross-site...

CVE-2024-7186

A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182B20201102. It has been classified as critical. This affects the function setWiFiAclAddConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument comment leads to buffer overflow. It is possible to initiate the attack remotely...

PT-2024-38148 · Totolink · Totolink A3600R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3600R version 4.1.2cu.5182 B20201102 Description: A critical issue has been found, affecting the function setWiFiAclAddConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the comment argument leads to buffer overflow. This...

PT-2024-38142 · Totolink · Totolink A3600R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3600R version 4.1.2cu.5182 B20201102 Description: A critical vulnerability has been found in the setPortForwardRules function of the /cgi-bin/cstecgi.cgi file. The manipulation of the comment argument leads to a buffer overflow. Thi...

TOTOLINK A3600R 安全漏洞

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from improper handling of the comment parameter in the setIpQosRules function of the /cgi-bin/cstecgi.cgi file. An attacker...

CVE-2023-50243

Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

CVE-2023-40042

TOTOLINK T10v2 5.9c.5061B20200511 has a stack-based buffer overflow in setStaticDhcpConfig in /lib/cstemodules/lan.so. Attackers can send crafted data in an MQTT packet, via the comment parameter, to control the return address and execute code...