33 matches found
CVE-2026-2151 D-Link DIR-615 DMZ Host Feature adv_firewall.php os command injection
A vulnerability has been found in D-Link DIR-615 4.10. This affects an unknown part of the file advfirewall.php of the component DMZ Host Feature. Such manipulation of the argument dmzipaddr leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the...
CVE-2025-50975
IPFire 2.29 web-based firewall interface firewall.cgi fails to sanitize several rule parameters such as PROT, SRCPORT, TGTPORT, dnatport, key, ruleremark, srcaddr, stdnettgt, and tgtaddr, allowing an authenticated administrator to inject persistent JavaScript. This stored XSS payload is executed...
CVE-2024-32333
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in MAC Filtering under the Firewall Page...
CVE-2024-28404
TOTOLINK X2000R before V1.0.0-B20231213.1013 contains a Stored Cross-site scripting XSS vulnerability in MAC Filtering under the Firewall Page...
CVE-2024-28402
TOTOLINK X2000R before V1.0.0-B20231213.1013 contains a Stored Cross-site scripting XSS vulnerability in IP/Port Filtering under the Firewall Page...
CVE-2024-32327
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in Port Forwarding under the Firewall Page...
TOTOLINK N300RT MAC Filtering Function Cross-Site Scripting Vulnerability
The TOTOLINK N300RT is a wireless router designed for home and small business users. The TOTOLINK N300RT suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the MAC Filtering function on the Firewall page, for whi...
TOTOLINK N300RT IP/Port Filtering Feature Cross-Site Scripting Vulnerability
The TOTOLINK N300RT is a wireless router designed for home and small business users. The TOTOLINK N300RT suffers from a cross-site scripting vulnerability, which stems from the lack of effective filtering and escaping of user-supplied data by the IP/Port Filtering feature of the Firewall page, an...
TOTOLINK N300RT Port Forwarding Function Cross-Site Scripting Vulnerability
The TOTOLINK N300RT is a wireless router designed for home and small business users. The TOTOLINK N300RT suffers from a cross-site scripting vulnerability, which stems from the lack of effective filtering and escaping of user-supplied data by the Port Forwarding feature on the Firewall page, whic...
CVE-2024-32334
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in IP/Port Filtering under the Firewall Page...
CVE-2024-32334
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in IP/Port Filtering under the Firewall Page...
CVE-2024-32327
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in Port Forwarding under the Firewall Page...
CVE-2024-32333
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in MAC Filtering under the Firewall Page...
CVE-2024-32327
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in Port Forwarding under the Firewall Page...
TOTOLINK N300RT 安全漏洞
The TOTOLINK N300RT is a wireless router designed for home and small business users. The TOTOLINK N300RT suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the MAC Filtering function on the Firewall page, for whi...
CVE-2024-32333
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in MAC Filtering under the Firewall Page...
CVE-2024-32327
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in Port Forwarding under the Firewall Page...
CVE-2024-32327
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in Port Forwarding under the Firewall Page...
CVE-2024-32333
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting XSS vulnerability in MAC Filtering under the Firewall Page...
CVE-2024-32327
TOTOLINK N300RT is affected by a Store Cross-site Scripting (XSS) vulnerability in the Port Forwarding feature of the Firewall page, impacting firmware version V2.1.8-B20201030.1539. The root cause, as described across sources, is improper handling/escaping of user-supplied data in Port Forwardin...