1964 matches found
CVE-2025-25430
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the configname parameter on the /cbiaddcert.htm page...
CVE-2025-25430
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the configname parameter on the /cbiaddcert.htm page...
TRENDnet TEW-929DRU 安全漏洞
The TRENDnet TEW-929DRU is a wireless router from TRENDnet. The TRENDnet TEW-929DRU suffers from a hard-coded password vulnerability that can be exploited by an attacker to log in as root...
TRENDnet TEW-929DRU 安全漏洞
The TRENDnet TEW-929DRU is a wireless router from TRENDnet. The TRENDnet TEW-929DRU suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the ssid key of the wifidata parameter on the /captiveportal.htm page, which...
CVE-2025-25431
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the The ssid key of wifidata parameter on the /captiveportal.htm page...
CVE-2025-25428
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...
CVE-2025-25429
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the rname variable inside the havesamename function on the /addschedule.htm page...
CVE-2025-25430
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the configname parameter on the /cbiaddcert.htm page...
CVE-2025-25428
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...
CVE-2025-25431
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the The ssid key of wifidata parameter on the /captiveportal.htm page...
CVE-2025-25430
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the configname parameter on the /cbiaddcert.htm page...
TRENDnet TEW-929DRU 安全漏洞
The TRENDnet TEW-929DRU is a wireless router from TRENDnet. The TRENDnet TEW-929DRU version 1.0.0.10 suffers from a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in the rname variable within the havesamename function on...
CVE-2025-25429
CVE-2025-25429 affects Trendnet TEW-929DRU (version 1.0.0.10). The vulnerability is a Stored Cross‑Site Scripting (XSS) in the /addschedule.htm page, exploited via the r_name variable inside the have_same_name function. Multiple connected sources describe the same issue for the TRENDnet router, i...
CVE-2025-25430
CVE-2025-25430 affects the Trendnet TEW-929DRU router (firmware 1.0.0.10). The vulnerability is a stored cross-site scripting (XSS) in the /cbi_addcert.htm page, exploitable via the configname parameter. The provided sources describe the issue and confirm the affected URL/parameter, but do not in...
CVE-2025-25429
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting XSS vulnerability via the rname variable inside the havesamename function on the /addschedule.htm page...
CVE-2025-25428
CVE-2025-25428 affects the TRENDnet TEW-929DRU router (firmware 1.0.0.10). The vulnerability is a hardcoded password stored in /etc/shadow, which allows an attacker to log in as root. The NVD and related records rate the impact as high (CVSS 3.1: AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). Affected fir...
CVE-2025-25431
The CVE-2025-25431 entry concerns TRENDnet TEW-929DRU (firmware 1.0.0.10). A Stored Cross-Site Scripting (XSS) flaw exists in the /captive_portal.htm page, exploitable via the wifi_data/ssid field in the request (likely via wifi_data[ssid]). Multiple sources corroborate the issue and describe it ...
PT-2025-9122 · Trendnet · Trendnet Tew-929Dru
Name of the Vulnerable Software and Affected Versions: Trendnet TEW-929DRU version 1.0.0.10 Description: The issue is related to a Stored Cross-site Scripting XSS vulnerability. This vulnerability can be exploited via the ssid key of the wifi data parameter on the "/captive portal.htm" API...
Trendnet TEW-929DRU 安全漏洞
The TRENDnet TEW-929DRU is a wireless router from TRENDnet. The TRENDnet TEW-929DRU suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the configname parameter of the /cbiaddcert.htm page, which can be exploited ...
The vulnerability of the adm_add_user() function in the ssi service of TRENDnet TEW-821DAP allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the admadduser function in the ssi service of TRENDnet TEW-821DAP wireless access points is related to the escape of the operation outside the buffer in memory when processing the username parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code o...