CVE-2026-7611

A vulnerability was found in TRENDnet TEW-821DAP up to 1.12B01. This impacts the function platformdoupgradecameodev of the file cameodev.sh of the component Firmware Update Handler. Performing a manipulation results in insufficient verification of data authenticity. The attack is possible to be...

CVE-2026-7611 TRENDnet TEW-821DAP Firmware Update cameo_dev.sh platform_do_upgrade_cameo_dev data authenticity

A vulnerability was found in TRENDnet TEW-821DAP up to 1.12B01. This impacts the function platformdoupgradecameodev of the file cameodev.sh of the component Firmware Update Handler. Performing a manipulation results in insufficient verification of data authenticity. The attack is possible to be...

CVE-2026-7611 TRENDnet TEW-821DAP Firmware Update cameo_dev.sh platform_do_upgrade_cameo_dev data authenticity

A vulnerability was found in TRENDnet TEW-821DAP up to 1.12B01. This impacts the function platformdoupgradecameodev of the file cameodev.sh of the component Firmware Update Handler. Performing a manipulation results in insufficient verification of data authenticity. The attack is possible to be...

PT-2026-36603

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-821DAP versions prior to 1.12B01 Description An issue exists in the Firmware Update Handler component within the cameo dev.sh file. Specifically, the platform do upgrade cameo dev function fails to sufficiently verify data...

Malicious code in cameo-react-native-share-story (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-1858 Malicious code in cameo-react-native-share-story (npm)

--- -= Per source details. Do not edit below this line.=-...

cameo-classics.com Cross Site Scripting vulnerability OBB-3597103

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18939)

The TRENDnet TEW-755AP is a router from TRENDnet. A stack overflow vulnerability exists in TRENDnet TEW-755AP version 1.13B01, which stems from a lack of size checking of input data in the comeo.comeo.nslookuptarget parameter of the toolsnslookup function, which can be exploited by an attacker to...

CVE-2022-46581

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the cameo.cameo.nslookuptarget parameter in the toolsnslookup function...

PT-2022-27916 · Trendnet · Trendnet Tew755Ap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A stack overflow issue was discovered, related to the cameo.cameo.netstat option parameter in the tools netstat function, specifically within the sub 41E730 function. Recommendations: For TRENDne...

CVE-2022-46581

Consolidated data for CVE-2022-46581: affected product is TRENDnet TEW755AP router, firmware version 1.13B01. Root cause is a lack of input size checking in the cameo.nslookup_target parameter of the tools_nslookup function, causing a stack overflow that could lead to arbitrary code execution. Pu...

PT-2022-27918 · Trendnet · Trendnet Tew755Ap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A stack overflow issue was discovered, related to the cameo.cameo.netstat rsname parameter in the tools netstat function, specifically within the sub 41E730 function. Recommendations: For TRENDne...

CVE-2020-25507

An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set the system enviroment file with world writable permissions 0777...

Code injection

An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set the system enviroment file with world writable permissions 0777...

CVE-2020-25507

CVE-2020-25507 affects TeamworkCloud 18.0–19.0. The installation script incorrectly assigns permissions, enabling a local unprivileged user to write to /etc/environment (0777) and to the twcloud user’s home at /home/twcloud, causing all users (including root) to execute arbitrary code on next log...

CVE-2020-25507

An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set the system enviroment file with world writable permissions 0777...

Vimeo: CRITICAL full source code/config disclosure for Cameo

Hi! The server at https://ci.cameo.tv/ has directory listing on and seems to host quiet a few debian packages containing extremely sensitive information database paswords, API keys, you name it. One example is the config package containing 16 config files, even personal ones containing local...

Cross site request forgery (csrf)

D-Link DWL-G700AP with firmware 2.00 and 2.01 allows remote attackers to cause a denial of service CAMEO HTTP service crash via a request composed of "GET" followed by a space and two newlines, possibly triggering the crash due to missing arguments...

CVE-2006-0784

D-Link DWL-G700AP with firmware 2.00 and 2.01 allows remote attackers to cause a denial of service CAMEO HTTP service crash via a request composed of "GET" followed by a space and two newlines, possibly triggering the crash due to missing arguments...

D-Link DWL-G700AP httpd DoS

author: l0om page: www.excluded.org product: D-Link DWL-G700AP firmware: tested on v2.00 and the latest v2.01 The DWL-G700AP is an accesspoint from D-Link and the only way to configure it is the http service which is managed from a httpd called "CAMEO". This webserver is very easy to DoS because...