CVE-2026-9430

A vulnerability was determined in Tenda F1202 1.2.0.20408. Affected by this issue is the function formGstDhcpSetSer of the file /goform/GstDhcpSetSerof. Executing a manipulation of the argument dips can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit...

CVE-2025-15252 Tenda M3 setDhcpAP formSetRemoteDhcpForAp stack-based overflow

A flaw has been found in Tenda M3 1.0.0.134903. The affected element is the function formSetRemoteDhcpForAp of the file /goform/setDhcpAP. This manipulation of the argument startip/endip/leasetime/gateway/dns1/dns2 causes stack-based buffer overflow. The attack can be initiated remotely. The...

EUVD-2018-13410

Malware in sbrugna...

EUVD-2024-49033

Malicious code in bioql PyPI...

EUVD-2023-28333

Malicious code in bioql PyPI...

EUVD-2024-32796

Malicious code in bioql PyPI...

CVE-2018-20872

DrayTek routers before 2018-05-23 allow CSRF attacks to change DNS or DHCP settings, a related issue to CVE-2017-11649...

XenServer - VMs on a Cisco USC host do not receive the DHCP settings

When running VMs on a XenServer 8.4 host running on Cisco UCS hardware, the VMs do not receive the DHCP settings...

CVE-2024-8227

A vulnerability was found in Tenda O1 1.0.0.710648 and classified as critical. Affected by this issue is the function fromDhcpSetSer of the file /goform/DhcpSetSer. The manipulation of the argument dhcpStartIp/dhcpEndIp/dhcpGw/dhcpMask/dhcpLeaseTime/dhcpDns1/dhcpDns2 leads to stack-based buffer...

CVE-2024-4251

A vulnerability was found in Tenda i21 1.0.0.144656. It has been rated as critical. Affected by this issue is the function fromDhcpSetSer of the file /goform/DhcpSetSe. The manipulation of the argument dhcpStartIp/dhcpEndIp/dhcpGw/dhcpMask/dhcpLeaseTime/dhcpDns1/dhcpDns2 leads to stack-based buff...

CVE-2023-24238

TOTOlink A7100RUV7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the city parameter at setting/delStaticDhcpRules...

CVE-2023-24276

TOTOlink A7100RUV7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the country parameter at setting/delStaticDhcpRules...

DrayTek Vigor Devices 'CVE-2018-20872' CSRF Vulnerability

Multiple DrayTek Vigor Routers are prone to a cross-site request forgery CSRF vulnerability. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License...

Product release: Virtuozzo Infrastructure Platform 3.5

In this release, Virtuozzo Infrastructure Platform offers a wide range of new features that enhance the experience of users working with compute virtualization and software-defined networking functionalities. Additionally, the update delivers stability improvements and addresses bugs found in...

CVE-2018-20872

DrayTek routers before 2018-05-23 allow CSRF attacks to change DNS or DHCP settings, a related issue to CVE-2017-11649...

CVE-2018-20872

DrayTek routers before 2018-05-23 allow CSRF attacks to change DNS or DHCP settings, a related issue to CVE-2017-11649...

Cross site request forgery (csrf)

DrayTek routers before 2018-05-23 allow CSRF attacks to change DNS or DHCP settings, a related issue to CVE-2017-11649...

VulnCheck KEV: CVE-2018-20872

DrayTek routers before 2018-05-23 allow CSRF attacks to change DNS or DHCP settings, a related issue to CVE-2017-11649...

Tenda / Dlink / Tplink TD-W8961ND - DHCP Cross-Site Scripting Vulnerability

Exploit for hardware platform in category web applications Document Title: =============== Tenda, Dlink & Tplink TD-W8961ND - DHCP XSS Vulnerability Abstract Advisory Information: ============================== The vulnerability laboratory research team discovered a persistent xss vulnerability i...

Tenda / D-Link / TP-Link DHCP Cross Site Scripting

Document Title: =============== Tenda, Dlink & Tplink TD-W8961ND - DHCP XSS Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1990 Release Date: ============= 2016-11-28 Vulnerability Laboratory ID VL-ID: ====================================...