32 matches found
EUVD-2025-5926
Malicious code in bioql PyPI...
EUVD-2025-5935
Malicious code in bioql PyPI...
EUVD-2025-5937
Malicious code in bioql PyPI...
TRENDnet TEW-929DRU /cbi_addcert.htm page cross-site scripting vulnerability
The TRENDnet TEW-929DRU is a wireless router from TRENDnet. The TRENDnet TEW-929DRU suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the configname parameter of the /cbiaddcert.htm page, which can be exploited ...
TRENDnet TEW-929DRU /captive_portal.htm page cross-site scripting vulnerability
The TRENDnet TEW-929DRU is a wireless router from TRENDnet. The TRENDnet TEW-929DRU suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the ssid key of the wifidata parameter on the /captiveportal.htm page, which...
CVE-2025-25429
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the rname variable inside the havesamename function on the /addschedule.htm page...
CVE-2025-25430
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the configname parameter on the /cbiaddcert.htm page...
CVE-2025-25428
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...
CVE-2025-25431
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the The ssid key of wifidata parameter on the /captiveportal.htm page...
CVE-2025-25428
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...
CVE-2025-25429
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the rname variable inside the havesamename function on the /addschedule.htm page...
CVE-2025-25429
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the rname variable inside the havesamename function on the /addschedule.htm page...
CVE-2025-25428
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...
CVE-2025-25430
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the configname parameter on the /cbiaddcert.htm page...
CVE-2025-25431
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the The ssid key of wifidata parameter on the /captiveportal.htm page...
CVE-2025-25430
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the configname parameter on the /cbiaddcert.htm page...
CVE-2025-25431
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the The ssid key of wifidata parameter on the /captiveportal.htm page...
CVE-2025-25431
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the The ssid key of wifidata parameter on the /captiveportal.htm page...
CVE-2025-25428
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...
CVE-2025-25429
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the rname variable inside the havesamename function on the /addschedule.htm page...