2638 matches found
CVE-2026-15543
The CVE-2026-15543 entry concerns Tenda CH22 firmware 1.0.0.1. The vulnerability affects the function formCertListInfo in /goform/CertListInfo, where manipulating the Name argument triggers a buffer overflow. This is a remote-exploit scenario, with public exploits cited. The available sources pro...
PT-2026-57527
Name of the Vulnerable Software and Affected Versions TRENDnet TEW-821DAP version 1.12B01 Description A buffer overflow can be triggered remotely via the nslookup target argument in the sub 41EC14 function within the /goform/tools nslookup file of the ssi component. This issue affects products th...
PT-2026-57528
Name of the Vulnerable Software and Affected Versions TRENDnet TEW-821DAP version 1.12B01 Description A buffer overflow can be triggered remotely within the ssi component. The issue resides in the sub 41EC14 function located in the /goform/tools nslookup file. A buffer overflow occurs when a...
The vulnerability of the final point /goform/getHomePageInfo of the microprogramming software for the Pix-Link LV-WR21Q router, which allows a hacker to trigger a service failure.
The vulnerability of the final point /goform/getHomePageInfo of the Pix-Link LV-WR21Q router’s microprogramming system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability could allow a malicious actor to cause service failures...
CVE-2026-13582
A flaw has been found in Edimax EW-7478APC 1.04. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. This manipulation of the argument UserName/Password causes buffer overflow. The attack is possible to be carried out remotely...
CVE-2026-13560 Edimax EW-7478APC POST Request formAccept os command injection
A security vulnerability has been detected in Edimax EW-7478APC 1.04. The affected element is the function formAccept of the file /goform/formAccept of the component POST Request Handler. The manipulation of the argument submit-url leads to os command injection. The attack is possible to be carri...
EUVD-2026-40016
A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been made public and could ...
CVE-2026-13519
A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been made public and could ...
CVE-2026-13517
The CVE-2026-13517 entry describes a stack-based overflow in Tenda JD12L’s /goform/WifiBasicSet function (parameter security_5g) impacting firmware 16.03.53.23. The root cause is a stack-based buffer overflow caused by manipulation of security_5g, allowing remote execution. Exploitation is report...
PT-2026-53174
Name of the Vulnerable Software and Affected Versions Tenda JD12L version 16.03.53.23 Description A stack-based buffer overflow occurs in the fromAddressNat function within the /goform/addressNat file. This issue is triggered by the manipulation of the page argument, allowing for remote...
CVE-2026-13516
A vulnerability was detected in Tenda JD12L 16.03.53.23. The affected element is the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet. Performing a manipulation of the argument shareSpeed results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is n...
CVE-2026-13515
A security vulnerability has been detected in Tenda JD12L 16.03.53.23. Impacted is the function formSetPPTPServer of the file /goform/SetPptpServerCfg. Such manipulation of the argument startIp leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclos...
EUVD-2026-38196
A security flaw has been discovered in Edimax BR-6478AC V2 1.23. Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulation of the argument command results in command injection. The attack may be initiated remotely. Th...
CVE-2026-12810
A security flaw has been discovered in Edimax BR-6478AC V2 1.23. Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulation of the argument command results in command injection. The attack may be initiated remotely. Th...
CVE-2026-12810 Edimax BR-6478AC V2 POST Request mp command injection
A security flaw has been discovered in Edimax BR-6478AC V2 1.23. Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulation of the argument command results in command injection. The attack may be initiated remotely. Th...
CVE-2026-12809
Edimax BR-6478AC V2 firmware 1.23 is affected by a command injection in the POST Request Handler, specifically in wiz_5in1_redirect (/goform/wiz_5in1_redirect) where manipulation of the newpass argument enables remote code execution. Attack vector is network-based and requires no user interaction...
CVE-2026-12808
A vulnerability was determined in Edimax BR-6478AC V2 1.23. This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler. This manipulation of the argument interface causes command injection. The attack can be initiated remotely. The exploit has been publicl...
CVE-2026-12808
A vulnerability was determined in Edimax BR-6478AC V2 1.23. This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler. This manipulation of the argument interface causes command injection. The attack can be initiated remotely. The exploit has been publicl...
EUVD-2026-38194
A vulnerability was determined in Edimax BR-6478AC V2 1.23. This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler. This manipulation of the argument interface causes command injection. The attack can be initiated remotely. The exploit has been publicl...
CVE-2026-12808
The CVE-2026-12808 entry concerns Edimax BR-6478AC V2 (firmware 1.23) with an issue in the POST Request Handler’s /goform/stainfo function, specifically the stainfo interface argument manipulation that enables command injection. The vulnerability is exploitable remotely, with public disclosure of...