134 matches found
CVE-2025-9149
A vulnerability was determined in Wavlink WL-NU516U1 M16U1V240425. This impacts the function sub4032E4 of the file /cgi-bin/wireless.cgi. This manipulation of the argument Guestssid causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclose...
CVE-2025-9149 Wavlink WL-NU516U1 wireless.cgi sub_4032E4 command injection
A vulnerability was determined in Wavlink WL-NU516U1 M16U1V240425. This impacts the function sub4032E4 of the file /cgi-bin/wireless.cgi. This manipulation of the argument Guestssid causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclose...
WAVLINK WL-NU516U1 注入漏洞
WAVLINK WL-NU516U1 is a wireless print server from China Ruiyin WAVLINK. An injection vulnerability exists in the WAVLINK WL-NU516U1 M16U1V240425 version, which originates from a command injection due to incorrect operation of the parameter Guestssid in the file /cgi-bin/wireless.cgi...
CVE-2024-51000
Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component wireless.cgi via the opmode, opmodean, and opmodean2 parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2024-51007
Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow via the passphrase parameter at wireless.cgi. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2024-39357
A stack-based buffer overflow vulnerability exists in the wireless.cgi SetName functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...
PT-2025-2540 · Wavlink · Wavlink Ac3000
Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A stack-based buffer overflow vulnerability exists in the DeleteMac function of wireless.cgi. This issue can be triggered by a specially crafted HTTP request, potentially leading to...
PT-2025-2538 · Wavlink · Wavlink Ac3000
Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A stack-based buffer overflow issue exists in the SetName functionality of wireless.cgi. This can be triggered by a specially crafted HTTP request, potentially leading to arbitrary comman...
WAVLINK AC3000 安全漏洞
WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 suffers from a buffer overflow vulnerability that originates from the wireless.cgi AddMac function failing to properly validate the length of input data, which can be exploited by an attacker to execute arbitrary co...
WAVLINK AC3000 安全漏洞
WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 suffers from a buffer overflow vulnerability that originates from the wireless.cgi setwifibasicmesh function failing to properly validate the length of the input data, which can be exploited by an attacker to execut...
WAVLINK AC3000 注入漏洞
WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 suffers from a command injection vulnerability that arises from the wireless.cgi AddMac function failing to properly filter special characters, commands, etc. used to construct commands. An attacker can exploit this...
PT-2025-2418 · Wavlink · Wavlink Ac3000
Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A command injection issue exists in the AddMac function of wireless.cgi. This can be triggered by a specially crafted HTTP request, potentially leading to arbitrary command execution. An...
The vulnerability in the wireless.cgi script of Netgear R8500 router software allows a hacker to induce a service failure.
The vulnerability in the wireless.cgi script of Netgear R8500 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of parameters opmode, opmodean, and opmodean2. Exploiting this vulnerability allows a malicious actor to caus...
The vulnerability in the wireless.cgi script of NETGEAR R7000P router software allows a hacker to induce a service failure.
The vulnerability in the wireless.cg script of NETGEAR R7000P router software is related to buffer overflow when processing the RADIUSAddr%dwla parameter. Exploiting this vulnerability allows a malicious actor to trigger a Denial-of-Service attack by sending a specially crafted POST request...
NETGEAR XR300 wireless.cgi component buffer overflow vulnerability
The NETGEAR XR300 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the NETGEAR XR300 v1.0.3.78, which originates from the passphrase parameter in the wireless.cgi component that fails to properly validate the length of the input data, and can be exploited by a remote...
NETGEAR R7000P wireless.cgi component buffer overflow vulnerability
The NETGEAR R7000P is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the NETGEAR R7000P v1.3.3.154, which originates from the RADIUSAddr%dwla parameter in the wireless.cgi component that fails to correctly validate the length of the input data, and can be exploited by a...
CVE-2024-51013
Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the RADIUSAddr%dwla parameter at wireless.cgi. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2024-51007
Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow via the passphrase parameter at wireless.cgi. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2024-51000
Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component wireless.cgi via the opmode, opmodean, and opmodean2 parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2024-51000
Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component wireless.cgi via the opmode, opmodean, and opmodean2 parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST request...