CVE-2025-6337

TOTOLINK A3002R/A3002RU (versions 3.0.0-B20230809.1615 through 4.0.0-B20230531.1404) contain a buffer overflow in the HTTP POST Request Handler via the submit-url argument of /boafrm/formTmultiAP. Root cause: insufficient validation of the input length/size of submit-url leading to remote code ex...

CVE-2025-6336 TOTOLINK EX1200T HTTP POST Request formTmultiAP buffer overflow

A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. It has been classified as critical. Affected is an unknown function of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possibl...

CVE-2025-6336 TOTOLINK EX1200T HTTP POST Request formTmultiAP buffer overflow

A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. It has been classified as critical. Affected is an unknown function of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possibl...

CVE-2025-6336

The CVE-2025-6336 issue affects TOTOLINK EX1200T, version 4.1.2cu.5232_B20210713. A vulnerability exists in the HTTP POST Request Handler, specifically in the /boafrm/formTmultiAP function where manipulating the submit-url argument can cause a buffer overflow. This enables remote exploitation and...

CVE-2025-6291

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2.03. This affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed t...

CVE-2025-6292

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6292 D-Link DIR-825 HTTP POST Request sub_4091AC stack-based overflow

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6292 D-Link DIR-825 HTTP POST Request sub_4091AC stack-based overflow

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6292

CVE-2025-6292 affects D-Link DIR-825, specifically version 2.03. The issue stems from the HTTP POST Request Handler’s sub_4091AC function, which can be triggered remotely to cause a stack-based buffer overflow. Public exploitation is indicated, and the vulnerability targets devices no longer supp...

CVE-2025-6291 D-Link DIR-825 HTTP POST Request do_file stack-based overflow

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2.03. This affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed t...

CVE-2025-6291

CVE-2025-6291 concerns the D-Link DIR-825 router (version 2.03) where the HTTP POST Request Handler’s function do_file allows a stack-based buffer overflow. Multiple sources (CNVD/CNNVD/NVD, CVE lists) describe a remote, unauthenticated or low-privilege path to exploit that can execute arbitrary ...

CVE-2025-6291 D-Link DIR-825 HTTP POST Request do_file stack-based overflow

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2.03. This affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed t...

TOTOLINK EX1200T Buffer Overflow Vulnerability

The TOTOLINK EX1200T is a wireless router from TOTOLINK that offers convenient network connectivity and management features. A buffer overflow vulnerability exists in the TOTOLINK EX1200T version 4.1.2cu.5232B20210713. The vulnerability arises due to a flaw in the handling of the submit-url...

TOTOLINK EX1200T Buffer Overflow Vulnerability

The TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK EX1200T version 4.1.2cu.5232B20210713. The vulnerability arises due to an error in some unknown process in the file /boafrm/formStats in the HTTP POST...

TOTOLINK EX1200T Buffer Overflow Vulnerability

The TOTOLINK EX1200T is a wireless router from TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK EX1200T version 4.1.2cu.5232B20210713. The vulnerability arises due to improper handling of the submit-url parameter of file /boafrm/formWirelessTbl in the HTTP POST request handling...

D-Link DIR-825 安全漏洞

The D-Link DIR-825 is a router from China's AUO D-Link. A buffer overflow vulnerability exists in the D-Link DIR-825 version 2.03, which originates from the function dofile in the HTTP POST Request Handler component that fails to correctly validate the length and size of the input data, and can b...

PT-2025-26307 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R and A3002RU versions 3.0.0-B20230809.1615 through 4.0.0-B20230531.1404 Description: A critical vulnerability has been found in the HTTP POST Request Handler of the affected devices. The issue is related to the manipulation of...

PT-2025-26746 · Totolink · Totolink Ex1200T

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical vulnerability has been found in the HTTP POST Request Handler of the TOTOLINK EX1200T. The issue is related to an unknown function of the file /boafrm/formIpv6Setup. The...

PT-2025-26306 · Totolink · Totolink Ex1200T

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical issue has been found in the HTTP POST Request Handler component, specifically affecting an unknown function of the file /boafrm/formTmultiAP. The manipulation of the...

CVE-2025-6164

A vulnerability was found in TOTOLINK A3002R 4.0.0-B20230531.1404. It has been classified as critical. This affects an unknown part of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...