1840 matches found
PT-2025-25622 · Totolink · Totolink A3002Ru
Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 4.0.0-B20230531.1404 Description: A critical issue has been found in the HTTP POST Request Handler component, specifically affecting the /boafrm/formMultiAP file. The manipulation of the submit-url argument leads to a...
CVE-2025-6146
CVE-2025-6146 affects TOTOLINK X15 v1.0.0-B20230714.1105. The vulnerability is a buffer overflow in the /boafrm/formSysLog HTTP POST Request Handler caused by improper handling of the submit-url argument, with remote exploitation possible and the exploit disclosed publicly. Multiple sources corro...
CVE-2025-6146 TOTOLINK X15 HTTP POST Request formSysLog buffer overflow
A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been classified as critical. This affects an unknown part of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...
CVE-2025-6146 TOTOLINK X15 HTTP POST Request formSysLog buffer overflow
A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been classified as critical. This affects an unknown part of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...
CVE-2025-6144
A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formSysCmd of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...
CVE-2025-6145
A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The...
CVE-2025-6145
A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The...
CVE-2025-6143
A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...
CVE-2025-6145 TOTOLINK EX1200T HTTP POST Request formSysLog buffer overflow
A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The...
CVE-2025-6145
CVE-2025-6145 affects TOTOLINK EX1200T (firmware 4.1.2cu.5232_B20210713). The flaw lies in the HTTP POST Request Handler, specifically the /boafrm/formSysLog endpoint, where the submit-url parameter can be manipulated to trigger a buffer overflow. This can allow remote exploitation and arbitrary ...
CVE-2025-6145 TOTOLINK EX1200T HTTP POST Request formSysLog buffer overflow
A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The...
CVE-2025-6144
CVE-2025-6144 affects TOTOLINK EX1200T, specifically a buffer overflow in the /boafrm/formSysCmd endpoint of the HTTP POST Request Handler when processing the submit-url parameter. The issue is triggered by insufficient validation of the submitted data, allowing remote exploitation. Impact is des...
CVE-2025-6144 TOTOLINK EX1200T HTTP POST Request formSysCmd buffer overflow
A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formSysCmd of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...
CVE-2025-6144 TOTOLINK EX1200T HTTP POST Request formSysCmd buffer overflow
A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formSysCmd of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...
CVE-2025-6143 TOTOLINK EX1200T HTTP POST Request formNtp buffer overflow
A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...
CVE-2025-6143
CVE-2025-6143 affects TOTOLINK EX1200T (version 4.1.2cu.5232_B20210713). The vulnerability is a buffer overflow in the /boafrm/formNtp HTTP POST Request Handler when the submit-url argument is manipulated. This can be triggered remotely and, according to multiple sources, the exploit is public. R...
CVE-2025-6138
A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected by this vulnerability is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ssid5g leads to buffer overflow. The attack can ...
CVE-2025-6138
The CVE-2025-6138 entry applies to TOTOLINK T10 (version 4.1.8cu.5207). The vulnerability is in the HTTP POST Request Handler function setWizardCfg, in the file /cgi-bin/cstecgi.cgi, where manipulation of the ssid5g argument causes a buffer overflow. It can be exploited remotely, and the exploit ...
CVE-2025-6138 TOTOLINK T10 HTTP POST Request cstecgi.cgi setWizardCfg buffer overflow
A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected by this vulnerability is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ssid5g leads to buffer overflow. The attack can ...
CVE-2025-6138 TOTOLINK T10 HTTP POST Request cstecgi.cgi setWizardCfg buffer overflow
A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected by this vulnerability is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ssid5g leads to buffer overflow. The attack can ...