CVE-2025-6128 TOTOLINK EX1200T HTTP POST Request formWirelessTbl buffer overflow

A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. This affects an unknown part of the file /boafrm/formWirelessTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

CVE-2025-6128

CVE-2025-6128 affects TOTOLINK EX1200T (firmware 4.1.2cu.5232_B20210713). The vulnerability is in the HTTP POST Request Handler, in file /boafrm/formWirelessTbl, where manipulation of the submit-url parameter leads to a buffer overflow. It can be exploited remotely and public exploits exist. Seve...

CVE-2025-6121 D-Link DIR-632 HTTP POST Request get_pure_content stack-based overflow

A vulnerability, which was classified as critical, has been found in D-Link DIR-632 FW103B08. Affected by this issue is the function getpurecontent of the component HTTP POST Request Handler. The manipulation of the argument Content-Length leads to stack-based buffer overflow. The attack may be...

CVE-2025-6121

CVE-2025-6121 affects D-Link DIR-632 FW103B08. The vulnerability is a stack-based overflow in the HTTP POST Request Handler’s get_pure_content function caused by incorrect handling of the Content-Length argument. It is exploitable remotely, with the exploit publicly disclosed, and affects product...

PT-2025-25551 · D Link · D-Link Dir-632

Name of the Vulnerable Software and Affected Versions: D-Link DIR-632 version FW103B08 Description: A critical issue has been found in the function get pure content of the component HTTP POST Request Handler. The manipulation of the argument Content-Length leads to a stack-based buffer overflow...

PT-2025-26494 · Totolink · Totolink N300Rt

Name of the Vulnerable Software and Affected Versions: TOTOLINK N300RH version 6.1c.1390 B20191101 Description: A critical issue was found in the HTTP POST Message Handler of the TOTOLINK N300RH, affecting some unknown functionality of the file /boafrm/formPortFw. The manipulation of the service...

PT-2025-26493 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability was found in the HTTP POST Request Handler component of TOTOLINK X15. The issue affects an unknown function of the file /boafrm/formIPv6Addr. The manipulation of...

TOTOLINK EX1200T 安全漏洞

The TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK EX1200T version 4.1.2cu.5232B20210713. The vulnerability arises due to an error in some unknown process in the file /boafrm/formStats in the HTTP POST...

D-Link DIR-632 安全漏洞

The D-Link DIR-632 is a router from China's AUO D-Link. A buffer overflow vulnerability exists in the D-Link DIR-632 FW103B08 version, which originates from the failure of the parameter Content-Length of the function getpurecontent in the component HTTP POST Request Handler to correctly validate...

PT-2025-26498 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability was found in the HTTP POST Request Handler component of the TOTOLINK X15, affecting the file /boafrm/formIpv6Setup. The manipulation of the submit-url argument...

PT-2025-26497 · Totolink · Totolink N300Rt

Name of the Vulnerable Software and Affected Versions: TOTOLINK N300RH version 6.1c.1390 B20191101 Description: A problematic issue was found in the HTTP POST Message Handler component, specifically affecting an unknown part of the file /boafrm/formFilter. The manipulation of the url argument lea...

CVE-2025-5301

ONLYOFFICE Docs DocumentServer in versions equal and below 8.3.1 are affected by a reflected cross-site scripting XSS issue when opening files via the WOPI protocol. Attackers could inject malicious scripts via crafted HTTP POST requests, which are then reflected in the server's HTML response...

D-Link DIR-632 Stack Buffer Overflow Vulnerability

D-Link DIR-632 is a wireless router for small business and SOHO users, supporting IEEE 802.11n and IEEE 802.11g wireless standards, with a maximum theoretical transfer rate of 300Mbps and equipped with eight 10/100Mbps LAN ports. A stack buffer overflow vulnerability exists in the D-Link DIR-632...

TOTOLINK EX1200T Buffer Overflow Vulnerability (CNVD-2025-12751)

The TOTOLINK EX1200T is a wireless router from TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK EX1200T version 4.1.2cu.5232B20210713, which affects the HTTP POST request processing component of file/boafrm/formFilter with unknown code. A remote attacker could exploit this...

Tenda A15 HTTP POST Request Buffer Overflow Vulnerability

The Tenda A15 is a dual-band gigabit wireless router. A buffer overflow vulnerability exists in the Tenda A15. The vulnerability stems from improper handling of the /goform/multimodalAdd file by the HTTP POST request processor component and can be exploited by an attacker to remotely execute...

The vulnerability of the HTTP POST Request Handler component of the fromadvsetlanip() function in the Tenda AC9 router’s microprogramming system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component of the fromadvsetlanip function in the Tenda AC9 router’s microprogramming system is related to buffer overflow in the stack during the processing of the lanMask parameter. Exploiting this vulnerability allows an attacker to compromise...

CVE-2025-5301

ONLYOFFICE Docs DocumentServer in versions equal and below 8.3.1 are affected by a reflected cross-site scripting XSS issue when opening files via the WOPI protocol. Attackers could inject malicious scripts via crafted HTTP POST requests, which are then reflected in the server's HTML response...

CVE-2025-5912

A vulnerability was found in D-Link DIR-632 FW103B08. It has been declared as critical. This vulnerability affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been...

CVE-2025-5909

A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T up to 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formReflashClientTbl of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. It is possible to launch th...

CVE-2025-5908

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T up to 4.1.2cu.5232B20210713. This issue affects some unknown processing of the file /boafrm/formIpQoS of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack may be...