191 matches found
CVE-2018-25358 D-Link DIR601 2.02NA Credential Disclosure via my_cgi.cgi
D-Link DIR601 2.02NA contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configuration data by manipulating the tablename parameter in POST requests. Attackers can send requests to /mycgi.cgi with tablename values like adminuser,...
TP-Link TL-WR720N 跨站请求伪造漏洞
The TP-Link TL-WR720N is a home wireless router by TP-Link Corporation, which supports wireless network sharing and routing functions. The TP-Link TL-WR720N has a cross-site request forgery vulnerability. This vulnerability arises from cross-site request forgery attacks, allowing attackers to...
CVE-2025-68715
An issue was discovered in Panda Wireless PWRU0 devices with firmware 2.2.9 that exposes multiple HTTP endpoints /goform/setWan, /goform/setLan, /goform/wirelessBasic that do not enforce authentication. A remote unauthenticated attacker can modify WAN, LAN, and wireless settings directly, leading...
CVE-2025-68715
An issue was discovered in Panda Wireless PWRU0 devices with firmware 2.2.9 that exposes multiple HTTP endpoints /goform/setWan, /goform/setLan, /goform/wirelessBasic that do not enforce authentication. A remote unauthenticated attacker can modify WAN, LAN, and wireless settings directly, leading...
CVE-2025-68715
CVE-2025-68715 affects Panda Wireless PWRU0 devices with firmware 2.2.9. The issue exposes HTTP endpoints /goform/setWan, /goform/setLan, and /goform/wirelessBasic that do not require authentication. A remote unauthenticated attacker can modify WAN, LAN, and wireless settings directly, enabling p...
PT-2026-1917
Name of the Vulnerable Software and Affected Versions Panda Wireless PWRU0 version 2.2.9 Description An issue exists in Panda Wireless PWRU0 devices that exposes multiple HTTP endpoints without authentication. These endpoints include '/goform/setWan', '/goform/setLan', and '/goform/wirelessBasic'...
CVE-2025-14300
The HTTPS service on Tapo C200 V3 exposes a connectAP interface without proper authentication. An unauthenticated attacker on the same local network segment can exploit this to modify the device’s Wi-Fi configuration, resulting in loss of connectivity and denial-of-service DoS...
CVE-2025-63834
A stored cross-site scripting XSS vulnerability was discovered in Tenda AC18 v15.03.05.05multi. The vulnerability exists in the ssid parameter of the wireless settings. Remote attackers can inject malicious payloads that execute when any user visits the router's homepage...
EUVD-2025-48944
A stored cross-site scripting XSS vulnerability was discovered in Tenda AC18 v15.03.05.05multi. The vulnerability exists in the ssid parameter of the wireless settings. Remote attackers can inject malicious payloads that execute when any user visits the router's homepage...
CVE-2025-63834
A stored cross-site scripting XSS vulnerability was discovered in Tenda AC18 v15.03.05.05multi. The vulnerability exists in the ssid parameter of the wireless settings. Remote attackers can inject malicious payloads that execute when any user visits the router's homepage...
CVE-2025-63834
A stored cross-site scripting XSS vulnerability was discovered in Tenda AC18 v15.03.05.05multi. The vulnerability exists in the ssid parameter of the wireless settings. Remote attackers can inject malicious payloads that execute when any user visits the router's homepage...
PT-2025-46176
Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.05 multi Description A stored cross-site scripting XSS issue exists in Tenda AC18. The issue is located in the ssid parameter within the wireless settings. An attacker can inject malicious payloads that will execute...
EUVD-2019-6429
Malware in sbrugna...
EUVD-2019-6395
Malware in sbrugna...
EUVD-2019-6416
Malware in sbrugna...
EUVD-2019-6423
Malware in sbrugna...
EUVD-2019-6424
Malware in sbrugna...
EUVD-2019-6679
Malware in sbrugna...
EUVD-2019-6427
Malware in sbrugna...
EUVD-2019-9133
Malware in sbrugna...