CVE-2026-10181

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formSysCmd of the file /goform/formSysCmd. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made...

TRENDnet TEW-432BRP 命令注入漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by the TRENDnet company. The TRENDnet TEW-432BRP 3.10B20 version has a command injection vulnerability. This vulnerability stems from the parameter sysCmd in the formSysCmd function within the goform/formSysCmd file, which allows for...

EUVD-2025-24663

Malicious code in bioql PyPI...

The vulnerability of the formSysCmd function in the microprogramming software of the D-Link DIR-619L router allows a hacker to execute arbitrary code.

The vulnerability of the formSysCmd function in the microprogramming system of the D-Link DIR-619L router lies in the lack of measures taken to clean data at the control level when processing the sysCmd parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...