CVE-2025-44651

In TRENDnet TPL-430AP FW1.0, the USERLIMITGLOBAL option is set to 0 in the bftpd-related configuration file. This can cause DoS attacks when unlimited users are connected...

TRENDnet TPL-430AP 安全漏洞

The TRENDnet TPL-430AP is a wireless access point from Trendnet, Inc. A security vulnerability exists in the TRENDnet TPL-430AP FW version 1.0, which stems from the USERLIMITGLOBAL option being set to 0, which could lead to a denial of service attack...

CVE-2025-44881

A command injection vulnerability in the component /cgi-bin/qos.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input...

JMBroadcast JMB0150 Firmware 安全漏洞

JMBroadcast JMB0150 Firmware is a firmware from JMBroadcast. A security vulnerability exists in JMBroadcast JMB0150 Firmware version v1.0, which stems from improper access control of the HOME.php endpoint, which could lead to unauthorized access to the administration panel...

PT-2024-24488 · Tenda · Tenda W30E

Name of the Vulnerable Software and Affected Versions: Tenda W30E version 1.0 Tenda W30E version 1.0.1.25633 Description: The issue is a stack overflow vulnerability that can be exploited via the page parameter in the fromAddressNat function. This vulnerability affects the firmware of the Tenda...

Digoo DG-HAMB Smart Home Security System 安全漏洞

The Digoo DG-HAMB Smart Home Security System is a suite of smart home security alarm systems from Digoo. A security vulnerability exists in the Digoo DG-HAMB Smart Home Security System v1.0 firmware version, which stems from a vulnerability that allows an attacker to gain full access, where the...

SimpliSafe SS3 Authentication Bypass Vulnerability

SimpliSafe SS3 is a home security solution from SimpliSafe USA. A security vulnerability exists in the SimpliSafe SS3 using firmware versions 1.0 through 1.3. An attacker could use the vulnerability to bypass authentication and connect a malicious keypad pair to the alarm system...

CVE-2018-10731

All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1.33 are prone to buffer overflows when handling very large cookies a different vulnerability than CVE-2018-10728...

CVE-2018-10729

All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1.33 allow reading the configuration file by an unauthenticated user...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability on Moxa MiiNePortE14641 devices with firmware 1.1.10 Build 09120714, MiiNePortE17080 devices with firmware 1.1.10 Build 09120714, MiiNePortE21242 devices with firmware 1.1 Build 10080614, MiiNePortE24561 devices with firmware 1.1 Build 10080614, and...

CVE-2016-2286

The CVE-2016-2286 issue affects Moxa MiiNePort devices (E1_E1_7080/E1_4641 with firmware 1.1.10 Build 09120714; E2_1242/E2_4561 with firmware 1.1 Build 10080614; E3 with firmware 1.0 Build 11071409). The root cause is weak credential management: by default no password is set, enabling blank defau...