CVE-2025-6138

A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected by this vulnerability is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ssid5g leads to buffer overflow. The attack can ...

CVE-2025-6137

A vulnerability classified as critical has been found in TOTOLINK T10 4.1.8cu.5207. Affected is the function setWiFiScheduleCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument desc leads to buffer overflow. It is possible to launch the...

CVE-2025-6130

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. This issue affects some unknown processing of the file /boafrm/formStats of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack may be initiated...

CVE-2025-6128

A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. This affects an unknown part of the file /boafrm/formWirelessTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

CVE-2025-6129

A vulnerability classified as critical was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. This vulnerability affects unknown code of the file /boafrm/formSaveConfig of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack can b...

CVE-2025-6121

A vulnerability, which was classified as critical, has been found in D-Link DIR-632 FW103B08. Affected by this issue is the function getpurecontent of the component HTTP POST Request Handler. The manipulation of the argument Content-Length leads to stack-based buffer overflow. The attack may be...

CVE-2025-6164

A vulnerability was found in TOTOLINK A3002R 4.0.0-B20230531.1404. It has been classified as critical. This affects an unknown part of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

CVE-2025-6165 TOTOLINK X15 HTTP POST Request formTmultiAP buffer overflow

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack c...

CVE-2025-6165 TOTOLINK X15 HTTP POST Request formTmultiAP buffer overflow

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack c...

CVE-2025-6165

The CVE-2025-6165 entry affects TOTOLINK X15, version 1.0.0-B20230714.1105, specifically the HTTP POST Request Handler component and the /boafrm/formTmultiAP endpoint. The root cause is improper validation of the submit-url parameter, causing a buffer overflow that can be triggered remotely. Publ...

CVE-2025-6164

TOTOLINK A3002R (version 4.0.0-B20230531.1404) contains a buffer overflow in the HTTP POST Request Handler, originating from the /boafrm/formMultiAP file when processing the submit-url parameter. The issue can be exploited remotely and affects the specified component, per multiple sources. Some r...

CVE-2025-6164 TOTOLINK A3002R HTTP POST Request formMultiAP buffer overflow

A vulnerability was found in TOTOLINK A3002R 4.0.0-B20230531.1404. It has been classified as critical. This affects an unknown part of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

CVE-2025-6162

A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...

CVE-2025-6163 TOTOLINK A3002RU HTTP POST Request formMultiAP buffer overflow

A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The...

CVE-2025-6163

CVE-2025-6163 affects TOTOLINK A3002RU (3.0.0-B20230809.1615). The /boafrm/formMultiAP endpoint of the HTTP POST Request Handler accepts a manipulated submit-url input leading to a buffer overflow, enabling remote exploitation. Documents indicate the vulnerability is high severity with likely cod...

CVE-2025-6162

CVE-2025-6162 affects TOTOLINK EX1200T (4.1.2cu.5232_B20210713). The vulnerability exists in the HTTP POST Request Handler’s file path /boafrm/formMultiAP, where manipulating the submit-url argument causes a buffer overflow. This can be exploited remotely and is described as a high-severity issue...

CVE-2025-6162 TOTOLINK EX1200T HTTP POST Request formMultiAP buffer overflow

A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...

CVE-2025-6158 D-Link DIR-665 HTTP POST Request sub_AC78 stack-based overflow

A vulnerability classified as critical has been found in D-Link DIR-665 1.00. This affects the function subAC78 of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-6158

D-Link DIR-665, version 1.00, is affected by a stack-based buffer overflow in the HTTP POST Request Handler’s sub_AC78 function. The vulnerability can be exploited remotely by sending a crafted POST request, and public exploit details exist. The issue may allow remote denial-of-service (per PT se...

CVE-2025-6158 D-Link DIR-665 HTTP POST Request sub_AC78 stack-based overflow

A vulnerability classified as critical has been found in D-Link DIR-665 1.00. This affects the function subAC78 of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the...