CVE-2025-57087

Tenda W30E V16.01.0.19 5037 was discovered to contain a stack overflow in the countryCode parameter in the werlessAdvancedSet function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

Tenda W30E werlessAdvancedSet Function Buffer Overflow Vulnerability

Tenda W30E is an enterprise-grade wireless router from Tenda Technology designed for SOHO, small and micro businesses and small stores. The Tenda W30E suffers from a buffer overflow vulnerability that originates from the failure of the countryCode parameter in the werlessAdvancedSet function to...

PT-2025-36900

Name of the Vulnerable Software and Affected Versions: Tenda W30E version V16.01.0.19 Description: The Tenda W30E router contains a stack overflow in the countryCode parameter within the werlessAdvancedSet function. This issue allows attackers to cause a Denial of Service DoS through a crafted...

CVE-2025-57087

Tenda W30E V16.01.0.19 5037 was discovered to contain a stack overflow in the countryCode parameter in the werlessAdvancedSet function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

Tenda W30E 安全漏洞

Tenda W30E is an enterprise-grade wireless router from Tenda Technology designed for SOHO, small and micro businesses and small stores. The Tenda W30E suffers from a buffer overflow vulnerability that originates from the failure of the countryCode parameter in the werlessAdvancedSet function to...

CVE-2025-57087

Tenda W30E V16.01.0.19 5037 was discovered to contain a stack overflow in the countryCode parameter in the werlessAdvancedSet function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-57087

CVE-2025-57087 affects Tenda W30E router (version V16.01.0.19/5037). The vulnerability is a stack overflow in the countryCode parameter within the werlessAdvancedSet function, leading to Denial of Service when a crafted request is sent. Multiple connected sources corroborate the existence of this...

Linux Distros Unpatched Vulnerability : CVE-2009-3583

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Directory traversal vulnerability in the Preferences menu item in SQL-Ledger 2.8.24 allows remote attackers to include and execute arbitrary local files via a...

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. A cross-site scripting vulnerability exists in the WAVLINK AC3000, which stems from the lack of effective filtering and escaping of user-supplied data in the login.cgi setlangCountryCode function, for which no detailed vulnerability...

CVE-2024-11658

CVE-2024-11658 affects EnGenius ENH1350EXT, ENS500-AC, and ENS620EXT (up to 20241118). The vulnerability stems from an injection in the file /admin/network/ajax_getChannelList where manipulating the countryCode parameter leads to command injection, exploitable remotely. Public exploit appears to ...

PT-2024-17167 · Engenius · Engenius Ens500-Ac +2

Name of the Vulnerable Software and Affected Versions: EnGenius ENH1350EXT versions up to 20241118 EnGenius ENS500-AC versions up to 20241118 EnGenius ENS620EXT versions up to 20241118 Description: A critical issue has been found in the affected devices, related to an unknown functionality of the...

PHP Scripts Mall Car Rental Script SQL Injection Vulnerability

PHP Scripts Mall Car Rental Script is a PHP based car rental website script by PHP Scripts Mall India. The script supports car rental reservation, vehicle type selection and user registration. A SQL injection vulnerability exists in PHP Scripts Mall Car Rental Script version 2.0.4. A remote...

中兴W-LAN无线接入控制器 /apgroup/getChannelByCountryCode.php 参数CountryCode注入漏洞

No description provided by source...

CVE-2010-4631

Multiple cross-site scripting XSS vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to inject arbitrary web script or HTML via the 1 countrycode parameter to contact.asp, USERNAME parameter to 2 gateway.asp and 3 cart.asp, and the specific parameter to 4 quote.asp and 5 buyitnow...

Sql injection

Multiple SQL injection vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to execute arbitrary SQL commands via the 1 article parameter to kb.asp, 2 specific parameter to cart.asp, 3 countrycode parameter to contact.asp, and the 4 srch parameter to search.asp. NOTE: the article...

UBUNTU-CVE-2009-3583

Directory traversal vulnerability in the Preferences menu item in SQL-Ledger 2.8.24 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the countrycode field...

CVE-2009-3583

Directory traversal vulnerability in the Preferences menu item in SQL-Ledger 2.8.24 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the countrycode field...

Directory traversal

Directory traversal vulnerability in the Preferences menu item in SQL-Ledger 2.8.24 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the countrycode field...

CVE-2009-3583

Directory traversal vulnerability in the Preferences menu item in SQL-Ledger 2.8.24 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the countrycode field...

DEBIAN-CVE-2009-3583

Directory traversal vulnerability in the Preferences menu item in SQL-Ledger 2.8.24 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the countrycode field...