CVE-2025-50671

Summary : CVE-2025-50671 affects the D-Link DI-8003 firmware version 16.07.26A1 via a buffer overflow in the /xwgl_ref.asp endpoint. The issue arises from improper handling of request parameters, where crafted HTTP GETs with excessively long strings in name, en, user_id, shibie_name, time, act, l...

D-Link DIR-816L Buffer Overflow Vulnerability

DIR-816L is a wireless router product from D-Link. A stack buffer overflow vulnerability exists in the D-Link DIR-816L version 206b09beta, which stems from failure to properly validate the input length when manipulating the en parameter of the scandirmain function in the /portal/ajaxexporer.sgi...

CVE-2025-11524

A flaw has been found in Tenda AC7 15.03.06.44. This issue affects some unknown processing of the file /goform/SetDDNSCfg. This manipulation of the argument ddnsEn causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used...

CVE-2025-11328 Tenda AC18 SetDDNSCfg stack-based overflow

A vulnerability was detected in Tenda AC18 15.03.05.196318. This issue affects some unknown processing of the file /goform/SetDDNSCfg. The manipulation of the argument ddnsEn results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is now public and may be...

CVE-2025-51281

D-Link DI-8100 16.07.26A1 is vulnerable to Buffer Overflow via the en, val and id parameters in the qjasp function. This vulnerability allows authenticated attackers to cause a Denial of Service DoS by sending crafted GET requests with overly long values for these parameters...

CVE-2025-51281

D-Link DI-8100 16.07.26A1 is vulnerable to Buffer Overflow via the en, val and id parameters in the qjasp function. This vulnerability allows authenticated attackers to cause a Denial of Service DoS by sending crafted GET requests with overly long values for these parameters...

CVE-2023-49004

An issue in D-Link DIR-850L v.B1FW223WWb01 allows a remote attacker to execute arbitrary code via a crafted script to the en parameter...

D-Link DIR-850 Security Vulnerability

The D-Link DIR-850 is a wireless router from China-based AUO D-Link. A security vulnerability exists in D-Link DIR-850L v.B1FW223WWb01. A remote attacker can exploit this vulnerability to execute arbitrary code via specially crafted scripts on the en parameter...

PT-2023-7920 · D Link · D-Link Dir-850L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-850L version B1 FW223WWb01 Description: The issue is related to the firmware of D-Link DIR-850L routers, specifically version B1 FW223WWb01, where a remote attacker can execute arbitrary code via a crafted script to the en paramete...

CVE-2023-40891

Tenda AC8 v4 USAC8V4.0siV16.03.34.06cn was discovered to contain a stack overflow via parameter firewallEn at /goform/SetFirewallCfg...

Maccms 跨站脚本漏洞

Maccms is a PHP-based content management system CMS for film and television. A cross-site scripting vulnerability exists in Macmms 10, which stems from a failure to properly handle data for the typeen parameter in the product. An attacker could obtain an administrator cookie and escalate privileg...