103 matches found
CVE-2026-10187
A vulnerability was detected in Totolink N300RH 6.1c.1353B20190305. Affected by this issue is the function setWiFiBasicConfig of the file wireless.so of the component Web Management Interface. Performing a manipulation of the argument KeyStr results in stack-based buffer overflow. The attack is...
CVE-2018-25321 TP-Link TL-WR720N CSRF via Administrative Interfaces (firmware V1_130719)
TP-Link TL-WR720N wireless router contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized administrative actions by crafting malicious web requests. Attackers can modify port forwarding rules via VirtualServerRpm.htm or change WiFi security settings via...
CVE-2026-3165
A vulnerability was determined in Tenda F453 1.0.0.3. Impacted is the function fromSetWifiGusetBasic of the file /goform/AdvSetWrlsafeset of the component httpd. This manipulation of the argument mitssid causes buffer overflow. The attack can be initiated remotely. The exploit has been publicly...
CVE-2026-3165
A vulnerability was determined in Tenda F453 1.0.0.3. Impacted is the function fromSetWifiGusetBasic of the file /goform/AdvSetWrlsafeset of the component httpd. This manipulation of the argument mitssid causes buffer overflow. The attack can be initiated remotely. The exploit has been publicly...
CVE-2026-3165
A vulnerability was determined in Tenda F453 1.0.0.3. Impacted is the function fromSetWifiGusetBasic of the file /goform/AdvSetWrlsafeset of the component httpd. This manipulation of the argument mitssid causes buffer overflow. The attack can be initiated remotely. The exploit has been publicly...
CVE-2026-2874
A flaw has been found in Tenda A21 1.0.0.0. Impacted is the function formfastsettingwifiset of the file /goform/fastsettingwifiset. Executing a manipulation of the argument ssid can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been published a...
CVE-2026-2874
A flaw has been found in Tenda A21 1.0.0.0. Impacted is the function formfastsettingwifiset of the file /goform/fastsettingwifiset. Executing a manipulation of the argument ssid can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been published a...
CVE-2026-2874
CVE-2026-2874 relates to Tenda A21 (firmware 1.0.0.0). The vulnerability is in the form_fast_setting_wifi_set function under /goform/fast_setting_wifi_set, where manipulating the ssid argument can trigger a stack-based buffer overflow. It allows remote exploitation, and multiple sources note that...
CVE-2020-37097
The CVE-2020-37097 entry concerns Edimax EW-7438RPn v1.13. The core issue is an information disclosure vulnerability exposed via the wlencrypt_wiz.asp script, which allows retrieval of sensitive configuration data including the WiFi network name and plaintext password stored in device configurati...
CVE-2023-25218
Tenda AC5 USAC5V1.0RTLV15.03.06.28 was discovered to contain a stack overflow via the formfastsettingwifiset function. This vulnerability allows attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...
CVE-2025-14300
CVE-2025-14300 affects TP-Link Tapo C200 V3. The HTTPS service exposes a connectAP interface without authentication, enabling an unauthenticated attacker on the same local network to modify the device’s Wi‑Fi configuration, causing loss of connectivity and DoS. Documented impact includes HIGH sev...
Tenda AX-3 安全漏洞
Tenda AX3 is a home dual-band Gigabit wireless router from Tenda Technology that supports Wi-Fi6 802.11ax standard and focuses on high-performance network coverage and stable connection. The Tenda AX3 suffers from a stack buffer overflow vulnerability that originates from the shareSpeed parameter...
EUVD-2025-37397
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the timeZone parameter in the formfastsettingwifiset function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
EUVD-2022-24418
Malicious code in bioql PyPI...
EUVD-2025-24686
Malicious code in bioql PyPI...
EUVD-2025-4504
Malicious code in bioql PyPI...
EUVD-2022-25397
Malicious code in bioql PyPI...
EUVD-2022-25741
Malicious code in bioql PyPI...
CVE-2024-13104
A vulnerability, which was classified as critical, was found in D-Link DIR-816 A2 1.10CNB05R1B011D88210. Affected is an unknown function of the file /goform/form2AdvanceSetup.cgi of the component WiFi Settings Handler. The manipulation leads to improper access controls. It is possible to launch t...
CVE-2023-41552
Tenda AC7 V1.0 V15.03.06.44 and Tenda AC9 V3.0 V15.03.06.42multi were discovered to contain a stack overflow via parameter ssid at url /goform/fastsettingwifiset...