2268 matches found
D-Link DIR-513 安全漏洞
The D-Link DIR-513 is a wireless router product from D-Link Corporation. Version 1.10 of the D-Link DIR-513 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters in the file/goform/formSetRoute, specifically the parameter curTime, which may lead to a...
Tenda F451 安全漏洞
The Tenda F451 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.7 of the Tenda F451 contains a security vulnerability. This vulnerability stems from the lack of proper validation for the parameter GO in the formWrlExtraSet function located in the file/goform/WrlExtraSet,...
EUVD-2026-21076
A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setStorageCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument sambaEnabled results in os command injection. It is possible to initiate th...
TOTOLINK A7100RU 操作系统命令注入漏洞
The TOTOLINK A7100RU is a wireless router produced by TOTOLINK, a Chinese company. The Totolink A7100RU 7.4cu.2313b20191024 version has a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations performed by the setVpnPassCfg function in the...
TOTOLINK A7100RU 操作系统命令注入漏洞
The TOTOLINK A7100RU is a wireless router produced by TOTOLINK, a Chinese company. The Totolink A7100RU 7.4cu.2313b20191024 version contains a vulnerability related to operating system command injection. This vulnerability stems from an operation on the setWiFiBasicCfg function parameter “wifiOff...
9Router 安全漏洞
9Router is an intelligent routing and downgrade AI model proxy tool developed by decolua’s individual developers. Versions of 9Router prior to 0.3.47 contained security vulnerabilities. These vulnerabilities stemmed from authorization bypass issues in the Administrative API Endpoint component’s/a...
CVE-2025-50657
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the pid parameter in the /trace.asp endpoint...
CVE-2026-34392 LORIS has a path traversal in static router
LORIS Longitudinal Online Research and Imaging System is a self-hosted web application that provides data- and project-management for neuroimaging research. From 20.0.0 to before 27.0.3 and 28.0.1, a bug in the static file router can allow an attacker to traverse outside of the intended directory...
D-Link DI-8003 安全漏洞
The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect boundary checking in the qostypeasp.asp script and can be exploited by an attacker to cause a denial of service...
D-Link DI-8003 安全漏洞
The D-Link DI-8003 is a wireless router produced by D-Link Corporation. The D-Link DI-8003 version 16.07.26A1 has a security vulnerability. This vulnerability stems from improper handling of input parameters for the /webkeyword.asp endpoint, which may lead to a buffer overflow...
CVE-2026-5687
A weakness has been identified in Tenda CX12L 16.03.53.12. This issue affects the function fromNatStaticSetting of the file /goform/NatStaticSetting. This manipulation of the argument page causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been made availabl...
Tenda CX12L 安全漏洞
The Tenda CX12L is a home-use wireless router device from the Chinese company Tenda. The version 16.03.53.12 of the Tenda CX12L contains a security vulnerability. This vulnerability stems from incorrect handling of parameters in the file/goform/webExcptypemanFilter, which may lead to a stack buff...
PT-2026-30385
Name of the Vulnerable Software and Affected Versions Tenda 4G03 Pro versions 1.0 through 1.1 and 04.03.01.53 Description A security flaw exists in Tenda 4G03 Pro. The issue involves improper access controls related to an unknown functionality within the /bin/httpd file. The attack can be perform...
EUVD-2026-17050
A security flaw has been discovered in Totolink A3300R 17.0.0cu.557b20221024. This vulnerability affects the function setSmartQosCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument qosupbw results in command injection. The attack can be execut...
TOTOLINK A3300R 命令注入漏洞
TOTOLINK A3300R is a wireless router produced by TOTOLINK Corporation. The TOTOLINK A3300R version 17.0.0cu.557b20221024 contains a command injection vulnerability. This vulnerability arises from incorrect handling of the parameter “enable” in the file /cgi-bin/cstecgi.cgi, which may lead to...
PT-2026-29115
Name of the Vulnerable Software and Affected Versions Tenda CH22 version 1.0.0.1 Description A flaw exists in the Parameter Handler component of Tenda CH22 version 1.0.0.1, specifically within the formQuickIndex function located in the /goform/QuickIndex file. Manipulation of the mit linktype...
CVE-2026-5042
A security flaw has been discovered in Belkin F9K1122 1.00.33. The affected element is the function formCrossBandSwitch of the file /goform/formCrossBandSwitch of the component Parameter Handler. The manipulation of the argument webpage results in stack-based buffer overflow. The attack may be...
D-Link DIR-513 安全漏洞
The D-Link DIR-513 is a wireless router product from D-Link Corporation. Version 1.10 of the D-Link DIR-513 contains a security vulnerability. This vulnerability arises from improper handling of the parameter curTime in the formSetEmail function within the file /goform/formSetEmail, which may lea...
Tenda FH1201 安全漏洞
The Tenda FH1201 is a wireless router produced by the Chinese company Tenda. The version Tenda FH1201 1.2.0.14408 contains a security vulnerability. This vulnerability arises from improper handling of parameters in the file/goform/WrlExtraSet, specifically parameter GO, which may lead to a stack...
CVE-2026-4961
A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack is possible ...