CVE-2025-14093

A vulnerability was detected in Edimax BR-6478AC V3 1.0.15. Impacted is the function sub416990 of the file /boafrm/formTracerouteDiagnosticRun. The manipulation of the argument host results in os command injection. The attack can be launched remotely. The exploit is now public and may be used. Th...

CVE-2025-14093 Edimax BR-6478AC V3 formTracerouteDiagnosticRun sub_416990 os command injection

A vulnerability was detected in Edimax BR-6478AC V3 1.0.15. Impacted is the function sub416990 of the file /boafrm/formTracerouteDiagnosticRun. The manipulation of the argument host results in os command injection. The attack can be launched remotely. The exploit is now public and may be used. Th...

PT-2025-49262

Name of the Vulnerable Software and Affected Versions Edimax BR-6478AC V3 version 1.0.15 Description A flaw exists in the Edimax BR-6478AC V3 version 1.0.15. The sub 416990 function within the /boafrm/formTracerouteDiagnosticRun file is susceptible to os command injection due to manipulation of t...

Edimax BR-6478AC 操作系统命令注入漏洞

Edimax BR-6478AC is a dual-band gigabit router from China Xunzhou Edimax. An OS command injection vulnerability exists in the Edimax BR-6478AC V3 version 1.0.15, which stems from the incorrect operation of the parameter host in the file /boafrm/formTracerouteDiagnosticRun, which could lead to os...

CVE-2025-13305

CVE-2025-13305 affects multiple D-Link routers: DWR-M920, DWR-M921, DWR-M960, DIR-822K, and DIR-825M (version 1.01.07). The root cause is improper handling of the host argument in the file /boafrm/formTracerouteDiagnosticRun, which can lead to a buffer overflow. This vulnerability enables remote ...

PT-2025-47224

Name of the Vulnerable Software and Affected Versions D-Link DWR-M920 D-Link DWR-M921 D-Link DWR-M960 D-Link DIR-822K D-Link DIR-825M version 1.01.07 Description A buffer overflow issue exists in D-Link routers due to improper handling of the host argument when processing the file...