EUVD-2025-201442

A flaw has been found in Edimax BR-6478AC V3 1.0.15. The affected element is the function sub44CCE4 of the file /boafrm/formSysCmd. This manipulation of the argument sysCmd causes os command injection. The attack may be initiated remotely. The exploit has been published and may be used. The vendo...

CVE-2025-14094

Edimax BR-6478AC V3 (firmware 1.0.15) is affected by an OS command injection in the function sub_44CCE4 of /boafrm/formSysCmd. The vulnerability arises from manipulating the sysCmd argument, enabling remote execution of commands. Public exploit code exists, and multiple sources confirm the attack...

CVE-2025-14094 Edimax BR-6478AC V3 formSysCmd sub_44CCE4 os command injection

A flaw has been found in Edimax BR-6478AC V3 1.0.15. The affected element is the function sub44CCE4 of the file /boafrm/formSysCmd. This manipulation of the argument sysCmd causes os command injection. The attack may be initiated remotely. The exploit has been published and may be used. The vendo...

CVE-2025-14094 Edimax BR-6478AC V3 formSysCmd sub_44CCE4 os command injection

A flaw has been found in Edimax BR-6478AC V3 1.0.15. The affected element is the function sub44CCE4 of the file /boafrm/formSysCmd. This manipulation of the argument sysCmd causes os command injection. The attack may be initiated remotely. The exploit has been published and may be used. The vendo...

Edimax BR-6478AC 操作系统命令注入漏洞

Edimax BR-6478AC is a dual-band gigabit router from China Xunzhou Edimax. An OS command injection vulnerability exists in Edimax BR-6478AC version 1.0.15, which stems from a misuse of the parameter sysCmd in the file /boafrm/formSysCmd, which can lead to os command injection...

PT-2025-49276

Name of the Vulnerable Software and Affected Versions Edimax BR-6478AC V3 version 1.0.15 Description A flaw exists in Edimax BR-6478AC V3 version 1.0.15 due to a command injection issue. The issue is related to the manipulation of the sysCmd argument within the sub 44CCE4 function of the...

VulnCheck KEV: CVE-2024-51228

An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121.1002 and TOTOLINK-CX-N300RT V2.1.6-B20170724.1420 and TOTOLINK-CX-N300RT V2.1.8-B20171113.1408 and TOTOLINK-CX-N300RT V2.1.8-B20191010.1107 and TOTOLINK-CX-N302RE V2.0.2-B20170511.1523 allows a remote...

EUVD-2025-27280

Malicious code in bioql PyPI...

EUVD-2025-25586

Malicious code in bioql PyPI...

EUVD-2025-24663

Malicious code in bioql PyPI...

CVE-2025-10107

A vulnerability has been found in TRENDnet TEW-831DR 1.0 601.130.1.1410. Impacted is an unknown function of the file /boafrm/formSysCmd. The manipulation of the argument sysHost leads to command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the...

CVE-2025-10107

A vulnerability has been found in TRENDnet TEW-831DR 1.0 601.130.1.1410. Impacted is an unknown function of the file /boafrm/formSysCmd. The manipulation of the argument sysHost leads to command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the...

CVE-2025-10107 TRENDnet TEW-831DR formSysCmd command injection

A vulnerability has been found in TRENDnet TEW-831DR 1.0 601.130.1.1410. Impacted is an unknown function of the file /boafrm/formSysCmd. The manipulation of the argument sysHost leads to command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the...

CVE-2025-10107 TRENDnet TEW-831DR formSysCmd command injection

A vulnerability has been found in TRENDnet TEW-831DR 1.0 601.130.1.1410. Impacted is an unknown function of the file /boafrm/formSysCmd. The manipulation of the argument sysHost leads to command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the...

TRENDnet TEW-831DR 安全漏洞

The TRENDnet TEW-831DR is a router from Trendnet, Inc. A security vulnerability exists in the TRENDnet TEW-831DR version 1.0, which stems from a command injection due to incorrect manipulation of the parameter sysHost in the file /boafrm/formSysCmd...

CVE-2025-55602

D-Link DIR-619L 2.06B01 is vulnerable to Buffer Overflow in the formSysCmd function via the submit-url parameter...

CVE-2025-55602

D-Link DIR-619L firmware 2.06B01 is affected by a buffer overflow in the formSysCmd function via the submit-url parameter. The issue permits network-exposed exploitation with low complexity and can impact availability (DoS) and integrity/confidentiality as per CVSS notes, though the documents do ...

PT-2025-34438 · D Link · D-Link Dir-619L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-619L version 2.06B01 Description: The D-Link DIR-619L device is susceptible to a buffer overflow issue in the formSysCmd function through the submit-url parameter. Recommendations: At the moment, there is no information about a new...

TOTOLINK N350R Injection Vulnerability

The TOTOLINK N350R is a WiFi router from China's Gion Electronics TOTOLINK. The TOTOLINK N350R suffers from an injection vulnerability that originates from a misbehavior in the file /boafrm/formSysCmd, which can be exploited by an attacker to cause an application to crash or behave abnormally by...

CVE-2025-8937

A vulnerability has been found in TOTOLINK N350R 1.2.3-B20130826. This vulnerability affects unknown code of the file /boafrm/formSysCmd. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...