CVE-2025-57060

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the rules parameter in the dnsforwardrulestore function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

Tenda G3 dns_forward_rule_store function buffer overflow vulnerability

Tenda G3 is a Qos Vpn router from Tenda China. A buffer overflow vulnerability exists in Tenda G3 v3.0brV15.11.0.17, which originates from the failure of the rules parameter in the dnsforwardrulestore function to correctly validate the length of the input data, and can be exploited by an attacker...

CVE-2025-57060

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the rules parameter in the dnsforwardrulestore function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-57060

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the rules parameter in the dnsforwardrulestore function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

PT-2025-36931

Name of the Vulnerable Software and Affected Versions: Tenda G3 version 3.0br V15.11.0.17 Description: The Tenda G3 version 3.0br V15.11.0.17 contains a stack overflow in the rules parameter within the dns forward rule store function. This issue allows attackers to cause a Denial of Service DoS b...

CVE-2025-57060

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the rules parameter in the dnsforwardrulestore function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2024-4115

A vulnerability, which was classified as critical, was found in Tenda W15E 15.11.0.14. Affected is the function formAddDnsForward of the file /goform/AddDnsForward. The manipulation of the argument DnsForwardRule leads to stack-based buffer overflow. It is possible to launch the attack remotely...

Tenda W15E 安全漏洞

Tenda W15E is a wireless router from Tenda China. A security vulnerability exists in the Tenda W15E version 15.11.0.14, which is caused by a buffer overflow vulnerability in the DnsForwardRule parameter of the formAddDnsForward method of the /goform/AddDnsForward file...

PT-2024-3213 · Tenda · Tenda W15E

Name of the Vulnerable Software and Affected Versions: Tenda W15E version 15.11.0.14 Description: A critical issue was found in the function formAddDnsForward of the file /goform/AddDnsForward. The manipulation of the argument DnsForwardRule leads to a stack-based buffer overflow. This can be...

CVE-2022-23399

A stack-based buffer overflow vulnerability exists in the confsrv setportfwdrule functionality of TCL LinkHub Mesh Wifi MS1G0001.0014. A specially-crafted network packet can lead to stack-based buffer overflow. An attacker can send a malicious packet to trigger this vulnerability...

TCL LinkHub Mesh Wi-Fi 缓冲区错误漏洞

TCL LinkHub Mesh Wi-Fi is a router from TCL. The TCL LinkHub Mesh Wi-Fi setportfwdrule feature suffers from a stack buffer overflow vulnerability, which can be exploited by attackers to cause a stack buffer overflow...

CVE-2021-45988

Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a stack overflow in the function formAddDnsForward. This vulnerability allows attackers to cause a Denial of Service DoS via the DnsForwardRule parameter...

Ebay INC (Magento) Web Security Bug Bounty: Directory Traversal / Local File Inclusion In magento.com

Little Insight: https://wiki.magento.com was vulnerable to a directory traversal / local file inclusion vulnerability. As a result, it was possible for an attacker to load web server-readable files from the local filesystem. well this LFI very interesting for me because when i am start my work i...

Arbitrary resource file download in urlrewrite.xml

panel:bgColor=e7f4fa NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report|http://jira.atlassian.com/browse/CONFCLOUD-26888. panel There is an arbitrary resource file download vulnerability triggered by a third party library...

CVE-2010-3213

Cross-site request forgery CSRF vulnerability in Microsoft Outlook Web Access owa/ev.owa 2007 through SP2 allows remote attackers to hijack the authentication of e-mail users for requests that perform Outlook requests, as demonstrated by setting the auto-forward rule...