355 matches found
EUVD-2024-35288
Malicious code in bioql PyPI...
EUVD-2023-35884
Malicious code in bioql PyPI...
EUVD-2023-53393
Malicious code in bioql PyPI...
EUVD-2022-33665
Malicious code in bioql PyPI...
EUVD-2025-31454
Malicious code in bioql PyPI...
EUVD-2023-41064
Malicious code in bioql PyPI...
CVE-2025-60660
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the mac parameter in the fromAdvSetMacMtuWan function...
CVE-2025-60660
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the mac parameter in the fromAdvSetMacMtuWan function...
CVE-2025-60660
CVE-2025-60660 affects Tenda AC18 firmware version 15.03.05.19. The vulnerability is a stack overflow in the fromAdvSetMacMtuWan function triggered by the mac parameter, as described by CNVD-2025-24471 and corroborated by NVD/Red Hat/CNNVD entries. Reported impact is denial of service. Public exp...
CVE-2025-60660
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the mac parameter in the fromAdvSetMacMtuWan function...
CVE-2025-61045
TOTOLINK X18 V9.1.0cu.2053B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the setEasyMeshAgentCfg function...
CVE-2025-61045
TOTOLINK X18 V9.1.0cu.2053B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the setEasyMeshAgentCfg function...
CVE-2025-61045
TOTOLINK X18 V9.1.0cu.2053B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the setEasyMeshAgentCfg function...
TOTOLINK X18 命令注入漏洞
TOTOLINK X18 is a Mesh WiFi 6 router system from TOTOLINK Taiwan, which supports WiFi 6 technology and optimizes home network coverage through the mesh function. TOTOLINK X18 suffers from a command injection vulnerability that stems from the mac parameter in the setEasyMeshAgentCfg function faili...
PT-2025-40255
Name of the Vulnerable Software and Affected Versions TOTOLINK X18 version 9.1.0cu.2053 B20230309 Description The software contains a command injection issue through the mac parameter within the setEasyMeshAgentCfg function. This allows for potential unauthorized command execution. Recommendation...
CVE-2025-61045
CVE-2025-61045 affects TOTOLINK X18 with firmware version 9.1.0cu.2053_B20230309. The setEasyMeshAgentCfg function’s mac parameter is susceptible to command injection due to insufficient filtering of command characters, enabling arbitrary command execution. Public reports (CNVD/Red Hat/NVD) confi...
D-Link DIR-823X Command Injection Vulnerability (CNVD-2025-23370)
The D-Link DIR-823X is a wireless router from China's AUO D-Link. The D-Link DIR-823X suffers from a command injection vulnerability that stems from a misuse of the parameter mac in the file /goform/setdevicename, which can be exploited by an attacker to cause remote command injection...
CVE-2025-11097
A vulnerability has been found in D-Link DIR-823X 250416. Impacted is an unknown function of the file /goform/setdevicename. The manipulation of the argument mac leads to command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be...
PT-2025-39759
Name of the Vulnerable Software and Affected Versions D-Link DIR-823X version 250416 Description A flaw exists in D-Link DIR-823X 250416 that allows remote command injection. The issue is located in an unknown function of the file /goform/set device name. Manipulating the mac argument can trigger...
D-Link DIR-823X 命令注入漏洞
The D-Link DIR-823X is a wireless router from China's AUO D-Link. The D-Link DIR-823X suffers from a command injection vulnerability that stems from a misuse of the parameter mac in the file /goform/setdevicename, which can be exploited by an attacker to cause remote command injection...