EUVD-2025-197687

A vulnerability has been found in D-Link DIR-816L 206b09beta. This affects the function genacgimain of the file gena.cgi. The manipulation of the argument SERVERID/HTTPSID leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to th...

PT-2024-30174 · Trendnet · Trendnet Tew-752Dru

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-752DRU version 1.03B01 Description: The issue is due to a lack of length verification for the service field in gena.cgi, leading to a buffer overflow. This can cause the remote target device to crash or allow attackers to execute...

SUSE CVE-2016-8863

Heap-based buffer overflow in the createurllist function in gena/genadevice.c in Portable UPnP SDK aka libupnp before 1.6.21 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a valid URI followed by an invalid one in the CALLBACK header of an...

CVE-2022-36756

DIR845L A1 v1.00-v1.03 is vulnerable to command injection via /htdocs/upnpinc/gena.php...

CVE-2022-37053

TRENDnet TEW733GR v1.03B01 is vulnerable to Command injection via /htdocs/upnpinc/gena.php...

EUVD-2022-39456

DIR845L A1 v1.00-v1.03 is vulnerable to command injection via /htdocs/upnpinc/gena.php...

D-Link DIR-845 代码注入漏洞

The D-Link DIR-845 is a wireless router from China's AUO D-Link. A code injection vulnerability exists in the D-Link DIR-845 versions v1.00 through v1.03, which originates from /htdocs/upnpinc/gena.php containing command injection...

CVE-2022-36523

D-Link Go-RT-AC750 GORTAC750revAv101b03 & GO-RT-AC750revBFWv200b02 is vulnerable to command injection via /htdocs/upnpinc/gena.php...

CVE-2022-36523

D-Link Go-RT-AC750 GORTAC750revAv101b03 & GO-RT-AC750revBFWv200b02 is vulnerable to command injection via /htdocs/upnpinc/gena.php...

D-Link GO-RT-AC750 命令注入漏洞

The D-Link GO-RT-AC750 is a wireless dual-band simple router from China AUO D-Link. Command injection vulnerabilities exist in the D-Link GO-RT-AC750 GORTAC750revAv101b03 and GO-RT-AC750revBFWv200b02, which stem from easy command injection via /htdocs/upnpinc/gena.php...

CVE-2021-31718

The server in npupnp before 4.1.4 is affected by DNS rebinding in the embedded web server including UPnP SOAP and GENA endpoints, leading to remote code execution...

Remote code execution

The server in npupnp before 4.1.4 is affected by DNS rebinding in the embedded web server including UPnP SOAP and GENA endpoints, leading to remote code execution...

CVE-2021-31718

The server in npupnp before 4.1.4 is affected by DNS rebinding in the embedded web server including UPnP SOAP and GENA endpoints, leading to remote code execution...

PT-2019-4530 · D Link · D-Link Dir-895L/R +10

Name of the Vulnerable Software and Affected Versions: D-Link DIR-818Lx versions not specified D-Link DIR-822 versions not specified D-Link DIR-823 versions not specified D-Link DIR-859 versions 1.05 through 1.06B01 Beta01 D-Link DIR-865L versions not specified D-Link DIR-868L versions not...