23 matches found
EUVD-2022-43426
Malicious code in bioql PyPI...
EUVD-2025-4109
Malicious code in bioql PyPI...
CVE-2024-32314
Tenda AC500 V2.0.1.91307 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...
CVE-2024-32281
Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulnerablility in formexeCommand function via the cmdinput parameter...
CVE-2022-40100
Tenda i9 v1.0.0.83828 was discovered to contain a command injection vulnerability via the FormexeCommand function...
Tenda AC6 安全漏洞
The Tenda AC6 is a wireless router from the Chinese company Tenda. A code execution vulnerability exists in the Tenda AC6 that stems from the cmdinput parameter of the formexeCommand function failing to properly filter special elements of the constructed snippet. No details of the vulnerability a...
Tenda AC10 安全漏洞
The Tenda AC10 is a wireless router from the Chinese company Tenda. Tenda AC10 suffers from a command injection vulnerability that stems from a command injection vulnerability contained in the formexeCommand function, no details of the vulnerability are provided at this time...
CVE-2025-25343
Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function...
CVE-2025-25343
Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function...
CVE-2025-25343
Tenda AC6 router with firmware V15.03.05.16 contains a buffer overflow in the formexeCommand function. The root cause is improper validation of input length in that function, enabling potential arbitrary code execution or denial of service. Exploitation status is not detailed in the provided docu...
CVE-2024-46048
Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i...
CVE-2024-46049
CVE-2024-46049 affects Tenda O6 V3.0 firmware 1.0.0.7(2054) and contains a stack overflow in the internal formexeCommand function. The available connected documentation explicitly pinpoints the vulnerable component as the formexeCommand function and confirms the issue as a stack overflow. The PT-...
CVE-2024-46049
Tenda O6 V3.0 firmware V1.0.0.72054 contains a stack overflow vulnerability in the formexeCommand function...
CVE-2024-46048
Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i...
CVE-2024-6963
The CVE-2024-6963 issue affects Tenda O3 version 1.0.0.10, in the formexeCommand function where manipulating the cmdinput parameter causes a stack-based buffer overflow. This can be triggered remotely and an exploit has been disclosed publicly. No patch details are provided in the sources; a prac...
CVE-2024-32283
Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function via the cmdinput parameter...
CVE-2024-32283
The CVE-2024-32283 entry applies to Tenda FH1203 firmware version 2.0.1.6, where a command injection vulnerability exists in the formexeCommand function via the cmdinput parameter. Exploitation details are not provided in the supplied documents, but multiple sources (Red Hat, CNVD/CNNVD, CVE data...
CVE-2024-32282
Tenda FH1202 v1.2.0.14408 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...
CVE-2024-2990
A vulnerability, which was classified as critical, was found in Tenda FH1203 2.0.1.6. This affects the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The explo...
PT-2024-23044 · Tenda · Tenda Fh1202
Name of the Vulnerable Software and Affected Versions: Tenda FH1202 version 1.2.0.14408 Description: A critical issue has been found in the Tenda FH1202 router, affecting the formexeCommand function in the /goform/execCommand file. The manipulation of the cmdinput argument leads to a stack-based...