CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/05 7:43 p.m.•8 views

CVE-2026-8777

A vulnerability was found in Edimax BR-6428NS 1.10. This issue affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. Performing a manipulation of the argument stadrvssid results in command injection. The attack can be initiated remotely. T...

6.5CVSS6.3AI score0.01158EPSS

RedhatCVE•added 2026/06/05 7:22 p.m.•7 views

CVE-2026-7748

A weakness has been identified in Totolink N300RH 3.2.4-B20220812. Affected by this issue is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Executing a manipulation of the argument FileName can lead to buffer overflow. The attack can be launched...

9CVSS8.3AI score0.00463EPSS

RedhatCVE•added 2026/06/05 7:19 p.m.•7 views

CVE-2026-5980

A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /goform/formSetMACFilter of the component POST Request Handler. This manipulation of the argument curTime causes buffer overflow. The attack may be initiated remotely. The exploit...

9CVSS8.2AI score0.00676EPSS

RedhatCVE•added 2026/06/05 7:19 p.m.•6 views

CVE-2026-5979

A vulnerability was detected in D-Link DIR-605L 2.13B01. Affected by this vulnerability is the function formVirtualServ of the file /goform/formVirtualServ of the component POST Request Handler. The manipulation of the argument curTime results in buffer overflow. The attack can be launched...

9CVSS8.3AI score0.00676EPSS

RedhatCVE•added 2026/06/05 7:17 p.m.•8 views

CVE-2026-6016

A vulnerability was found in Tenda AC9 15.03.02.13. The affected element is the function decodePwd of the file /goform/WizardHandle of the component POST Request Handler. Performing a manipulation of the argument WANS results in stack-based buffer overflow. The attack can be initiated remotely. T...

9CVSS8.4AI score0.00839EPSS

RedhatCVE•added 2026/06/05 7:17 p.m.•7 views

CVE-2026-6014

A flaw has been found in D-Link DIR-513 1.10. This issue affects the function formAdvanceSetup of the file /goform/formAdvanceSetup of the component POST Request Handler. This manipulation of the argument webpage causes buffer overflow. It is possible to initiate the attack remotely. The exploit...

9CVSS8.1AI score0.00734EPSS

RedhatCVE•added 2026/06/02 4:3 a.m.•10 views

CVE-2026-10127

A weakness has been identified in Edimax BR-6478AC 1.23. This affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack may be initiated remotely. The exploit has...

6.5CVSS6.5AI score0.01262EPSS

RedhatCVE•added 2026/06/02 4:2 a.m.•10 views

CVE-2026-10164

A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ShareName/SelectName results in buffer overflow. The attack can be executed remotely. The exploit ha...

9CVSS7.7AI score0.00463EPSS

NVD•added 2026/05/31 4:16 a.m.•15 views

CVE-2026-10166

A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack is possible to be carried out remotely...

6.5CVSS0.01072EPSS

NVD•added 2026/05/31 4:16 a.m.•9 views

CVE-2026-10163

A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of the argument UserName/Password leads to buffer overflow. Remote exploitation of the attack is...

9CVSS0.00463EPSS

CVE•added 2026/05/31 3:15 a.m.•13 views

CVE-2026-10166

Edimax BR-6478AC (firmware 1.23) is affected by a vulnerability in the POST Request Handler, specifically the function formWlbasic in /goform/formWlbasic. The issue arises from manipulating the argument rootAPmac, enabling command injection. The vulnerability is exploitable remotely and has been ...

6.5CVSS6.4AI score0.01072EPSS

ATTACKERKB•added 2026/05/31 3:15 a.m.•10 views

CVE-2026-10166

6.5CVSS6.4AI score0.01072EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/31 3:15 a.m.•30 views

CVE-2026-10166 Edimax BR-6478AC POST Request formWlbasic command injection

6.5CVSS0.01072EPSS

EUVD•added 2026/05/31 3:15 a.m.•13 views

EUVD-2026-33486

6.5CVSS6.4AI score0.01072EPSS

Vulnrichment•added 2026/05/31 3:0 a.m.•7 views

CVE-2026-10165 Edimax BR-6478AC POST Request formWanTcpipSetup stack-based overflow

A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manipulation of the argument pppUserName leads to stack-based buffer overflow. The attack may be...

9CVSS7.9AI score0.00738EPSS