32 matches found
EUVD-2025-21351
Malicious code in bioql PyPI...
CVE-2025-50757
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50755
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsyscmd function via the command parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50755
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsyscmd function via the command parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50757
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50755
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsyscmd function via the command parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50757
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
PT-2025-35570
Name of the Vulnerable Software and Affected Versions: Wavlink WN535K3 version 20191010 Description: The Wavlink WN535K3 router contains a command injection vulnerability in the set sys cmd function through the command parameter. This allows attackers to execute arbitrary commands via a crafted...
PT-2025-35571
Name of the Vulnerable Software and Affected Versions: Wavlink WN535K3 version 20191010 Description: A command injection vulnerability exists in the set sys adm function of the Wavlink WN535K3 router. The vulnerability is triggered through manipulation of the username parameter, allowing attacker...
CVE-2025-50755
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsyscmd function via the command parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50755
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsyscmd function via the command parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50757
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
EUVD-2025-26404
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50757
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50757
Wavlink WN535K3 (version 20191010) is affected by a command-injection vulnerability in the set_sys_adm function triggered via the username parameter. The flaw enables attackers to execute arbitrary commands through a crafted request. CVSSv3.1 base score is 6.5 (Network, Low attack complexity, No ...
CVE-2025-50756
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the newpass parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50756
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the newpass parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50756
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the newpass parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50756
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the newpass parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-50756
Affected product: Wavlink WN535K3 (version 20191010). Vulnerability: Command injection in the set_sys_adm function via the newpass parameter, allowing arbitrary commands to be executed remotely. Impact: High/critical severity (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Notes from connected s...