CVE-2025-34305

IPFire versions prior to 2.29 Core Update 198 contain multiple stored cross-site scripting XSS vulnerabilities caused by a bug in the cleanhtml function /var/ipfire/header.pl that fails to apply HTML-entity encoding to user input. When an authenticated user submits data to affected endpoints - fo...

CVE-2025-34305

IPFire versions prior to 2.29 Core Update 198 contain multiple stored cross-site scripting XSS vulnerabilities caused by a bug in the cleanhtml function /var/ipfire/header.pl that fails to apply HTML-entity encoding to user input. When an authenticated user submits data to affected endpoints - fo...

CVE-2025-57060

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the rules parameter in the dnsforwardrulestore function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-57060

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the rules parameter in the dnsforwardrulestore function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2024-4115

A vulnerability, which was classified as critical, was found in Tenda W15E 15.11.0.14. Affected is the function formAddDnsForward of the file /goform/AddDnsForward. The manipulation of the argument DnsForwardRule leads to stack-based buffer overflow. It is possible to launch the attack remotely...

PT-2024-3213 · Tenda · Tenda W15E

Name of the Vulnerable Software and Affected Versions: Tenda W15E version 15.11.0.14 Description: A critical issue was found in the function formAddDnsForward of the file /goform/AddDnsForward. The manipulation of the argument DnsForwardRule leads to a stack-based buffer overflow. This can be...

Tenda W15E 安全漏洞

Tenda W15E is a wireless router from Tenda China. A security vulnerability exists in the Tenda W15E V1.0 V15.11.0.14 152131901058 version, which stems from a buffer overflow vulnerability discovered to be contained via the index parameter in the formDelDnsForward function. An attacker could explo...

IP-COM M50 安全漏洞

The IP-COM M50 is a wireless router from IP-COM USA. A security vulnerability exists in IP-COM M50 version V15.11.0.3310768, which stems from the discovery of a contained buffer overflow vulnerability via the rules parameter in the formAddDnsForward function...

CVE-2021-45988

Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a stack overflow in the function formAddDnsForward. This vulnerability allows attackers to cause a Denial of Service DoS via the DnsForwardRule parameter...

CVE-2021-45988

Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a stack overflow in the function formAddDnsForward. This vulnerability allows attackers to cause a Denial of Service DoS via the DnsForwardRule parameter...