Lucene search
K

19 matches found

NVD
NVD
added 2022/08/10 8:15 p.m.25 views

CVE-2022-35526

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 login.cgi has no filtering on parameter key, which leads to command injection in page /login.shtml...

9.8CVSS0.02302EPSS
Exploits1References1
NVD
NVD
added 2022/08/10 8:15 p.m.19 views

CVE-2022-35520

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 api.cgi has no filtering on parameter ufconf, and this is a hidden parameter which doesn't appear in POST body, but exist in cgi binary. This leads to command injection in page /ledonoff.shtml...

9.8CVSS0.02302EPSS
Exploits1References1
Prion
Prion
added 2022/08/10 8:15 p.m.14 views

Command injection

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters: clilist and clinum, which leads to command injection in page /qos.shtml...

7.5CVSS9.7AI score0.02302EPSS
Exploits1References1
Prion
Prion
added 2022/08/10 8:15 p.m.14 views

Command injection

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameters: mac5g and Newname, which leads to command injection in page /wifimesh.shtml...

7.5CVSS9.7AI score0.02238EPSS
Exploits1References1
Prion
Prion
added 2022/08/10 8:15 p.m.18 views

Command injection

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters: qosbandwith and qosdat, which leads to command injection in page /qos.shtml...

7.5CVSS9.7AI score0.02238EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/08/09 7:56 p.m.3 views

CVE-2022-35518

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 nas.cgi has no filtering on parameters: User1Passwd and User1, which leads to command injection in page /nasdisk.shtml...

9.2AI score0.01509EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/09 7:53 p.m.21 views

CVE-2022-35520

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 api.cgi has no filtering on parameter ufconf, and this is a hidden parameter which doesn't appear in POST body, but exist in cgi binary. This leads to command injection in page /ledonoff.shtml...

9.9AI score0.02302EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/09 7:52 p.m.18 views

CVE-2022-35521

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameters: remoteManagementEnabled, blockPortScanEnabled, pingFrmWANFilterEnabled and blockSynFloodEnabled, which leads to command injection in page /mansecurity.shtml...

10AI score0.02302EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/09 7:50 p.m.17 views

CVE-2022-35523

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameter delmac and parameter flag, which leads to command injection in page /cliblacklist.shtml...

10AI score0.02302EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/09 7:49 p.m.18 views

CVE-2022-35524

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameters: wlansignal, webpskValue, selEncrypTyp, selAutomode, wlanbssid, wlanssid and wlanchannel, which leads to command injection in page /wizardrep.shtml...

10AI score0.02302EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/09 7:43 p.m.24 views

CVE-2022-35526

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 login.cgi has no filtering on parameter key, which leads to command injection in page /login.shtml...

9.9AI score0.02302EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/09 7:37 p.m.23 views

CVE-2022-35533

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters: clilist and clinum, which leads to command injection in page /qos.shtml...

10AI score0.02302EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/09 7:28 p.m.16 views

CVE-2022-35536

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters: qosbandwith and qosdat, which leads to command injection in page /qos.shtml...

10AI score0.02238EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/09 7:3 p.m.26 views

CVE-2022-35538

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameters: deletelist, deletealmac, bdeletelist and bdeletealmac, which leads to command injection in page /wifimesh.shtml...

10AI score0.02238EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/08/09 12:0 a.m.7 views

PT-2022-22891 · Wavlink · Wavlink Wn530H4 +4

Name of the Vulnerable Software and Affected Versions: WAVLINK WN572HP3 WAVLINK WN533A8 WAVLINK WN530H4 WAVLINK WN535G3 WAVLINK WN531P3 Description: The issue affects the qos.cgi page, specifically the /qos.shtml endpoint, where the cli list and cli num parameters have no filtering, leading to...

9.8CVSS9.7AI score0.02302EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/08/09 12:0 a.m.11 views

PT-2022-22880 · Wavlink · Wavlink Wn533A8 +4

Name of the Vulnerable Software and Affected Versions: WAVLINK WN572HP3 WAVLINK WN533A8 WAVLINK WN530H4 WAVLINK WN535G3 WAVLINK WN531P3 Description: The issue is related to a lack of filtering on parameters: User1Passwd and User1 in the nas.cgi file, which leads to command injection in the /nas...

9.8CVSS9AI score0.01509EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2022/08/09 12:0 a.m.8 views

PT-2022-22884 · Wavlink · Wavlink Wn533A8 +4

Name of the Vulnerable Software and Affected Versions: WAVLINK WN572HP3 WAVLINK WN533A8 WAVLINK WN530H4 WAVLINK WN535G3 WAVLINK WN531P3 Description: The issue is related to the firewall.cgi having no filtering on parameters: remoteManagementEnabled, blockPortScanEnabled, pingFrmWANFilterEnabled,...

9.8CVSS9.6AI score0.02302EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/08/09 12:0 a.m.14 views

PT-2022-22879 · Wavlink · Wavlink Wn530H4 +4

Name of the Vulnerable Software and Affected Versions: WAVLINK WN572HP3 WAVLINK WN533A8 WAVLINK WN530H4 WAVLINK WN535G3 WAVLINK WN531P3 Description: The issue concerns the lack of filtering on certain parameters in the adm.cgi file, specifically: web pskValue, wl Method, wlan ssid, EncrypType, rw...

8.8CVSS8.9AI score0.02251EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/08/09 12:0 a.m.10 views

PT-2022-22887 · Wavlink · Wavlink Wn533A8 +4

Name of the Vulnerable Software and Affected Versions: WAVLINK WN572HP3 WAVLINK WN533A8 WAVLINK WN530H4 WAVLINK WN535G3 WAVLINK WN531P3 Description: The issue is related to a lack of filtering on parameters in the adm.cgi file, which leads to command injection in the /wizard rep.shtml page. The...

9.8CVSS9.6AI score0.02302EPSS
Exploits1References3
Rows per page
Query Builder