40 matches found
EUVD-2019-3077
Malware in sbrugna...
CVE-2023-0611
A vulnerability, which was classified as critical, has been found in TRENDnet TEW-652BRP 3.04B01. This issue affects some unknown processing of the file getset.ccp of the component Web Management Interface. The manipulation leads to command injection. The attack may be initiated remotely. The...
CVE-2023-0639
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01 and classified as problematic. This issue affects some unknown processing of the file getset.ccp of the component Web Management Interface. The manipulation of the argument nextPage leads to cross site scripting. The attack may be initiated...
CVE-2023-0618
A vulnerability was found in TRENDnet TEW-652BRP 3.04B01. It has been declared as critical. This vulnerability affects unknown code of the file cfgop.ccp of the component Web Service. The manipulation leads to memory corruption. The attack can be initiated remotely. The exploit has been disclosed...
PT-2024-34556 · Trendnet · Trendnet Tew-652Brp +1
Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-651BR version 2.04B1 TRENDnet TEW-652BRP version 3.04b01 TRENDnet TEW-652BRU version 1.00b12 Description: The issue is related to a Store Cross-site scripting XSS vulnerability. This vulnerability can be exploited via the macList...
CVE-2024-51188
CVE-2024-51188 affects TRENDnet TEW-651BR (2.04B1), TEW-652BRP (3.04b01), and TEW-652BRU (1.00b12). It is a Store XSS vulnerability triggered by the vsRule_VirtualServerName_1.1.10.0.0 parameter on the /virtual_server.htm page. Root cause/impact: cross-site scripting may affect confidentiality an...
TRENDnet TEW-651BR 安全漏洞
The TRENDnet TEW-651BR is a wireless router from Trendnet, Inc. A security vulnerability exists in the TRENDnet TEW-651BR version 2.04B1, TEW-652BRP version 3.04b01, and TEW-652BRU version 1.00b12, which originates from a cross-site scripting vulnerability contained in the macListName1.1.1.0.0...
TRENDnet TEW-652BRP Cross-Site Scripting Vulnerability
TRENDnet TEW-652BRP is a wireless router from TRENDnet USA. TRENDnet TEW-652BRP getset.ccp suffers from a cross-site scripting vulnerability, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code that can obtain sensitive information or hijack user...
CVE-2023-0640
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01. It has been classified as critical. Affected is an unknown function of the file ping.ccp of the component Web Interface. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2023-0639
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01 and classified as problematic. This issue affects some unknown processing of the file getset.ccp of the component Web Management Interface. The manipulation of the argument nextPage leads to cross site scripting. The attack may be initiated...
CVE-2023-0639
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01 and classified as problematic. This issue affects some unknown processing of the file getset.ccp of the component Web Management Interface. The manipulation of the argument nextPage leads to cross site scripting. The attack may be initiated...
CVE-2023-0640
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01. It has been classified as critical. Affected is an unknown function of the file ping.ccp of the component Web Interface. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been...
Cross site scripting
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01 and classified as problematic. This issue affects some unknown processing of the file getset.ccp of the component Web Management Interface. The manipulation of the argument nextPage leads to cross site scripting. The attack may be initiated...
Command injection
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01. It has been classified as critical. Affected is an unknown function of the file ping.ccp of the component Web Interface. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2023-0640 TRENDnet TEW-652BRP Web Interface ping.ccp command injection
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01. It has been classified as critical. Affected is an unknown function of the file ping.ccp of the component Web Interface. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2023-0640
TRENDnet TEW-652BRP Web Interface ping.ccp has a command injection vulnerability in an unknown function. The flaw can be exploited remotely, with public disclosure of the exploit. Affected firmware: 3.04b01. Root cause described as an unknown function in ping.ccp; no specific vulnerable files bey...
CVE-2023-0640 TRENDnet TEW-652BRP Web Interface ping.ccp command injection
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01. It has been classified as critical. Affected is an unknown function of the file ping.ccp of the component Web Interface. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2023-0639 TRENDnet TEW-652BRP Web Management Interface get_set.ccp cross site scripting
A vulnerability was found in TRENDnet TEW-652BRP 3.04b01 and classified as problematic. This issue affects some unknown processing of the file getset.ccp of the component Web Management Interface. The manipulation of the argument nextPage leads to cross site scripting. The attack may be initiated...
CVE-2023-0639
Summary: TRENDnet TEW-652BRP (version 3.04b01) exposes a Cross-Site Scripting issue in the Web Management Interface via the get_set.ccp endpoint, caused by improper handling of the nextPage parameter. This could allow remote attackers to inject scripts when data is viewed. Affected: TRENDnet TEW-...
PT-2023-16417 · Trendnet · Trendnet Tew-652Brp
Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-652BRP version 3.04b01 Description: A critical issue has been found in the Web Interface component of the affected software, specifically in an unknown function of the file ping.ccp. This issue leads to command injection and can ...