3609 matches found
CVE-2025-5907
TOTOLINK EX1200T firmware up to 4.1.2cu.5232_B20210713 contains a buffer overflow in the HTTP POST Request Handler, specifically in file /boafrm/formFilter. A remote attacker can exploit this to execute arbitrary code. Public exploit details exist (verified in CNVD/CNNVD and CVE records); affecte...
CVE-2025-5907 TOTOLINK EX1200T HTTP POST Request formFilter buffer overflow
A vulnerability classified as critical was found in TOTOLINK EX1200T up to 4.1.2cu.5232B20210713. This vulnerability affects unknown code of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The...
PT-2025-25624 · Totolink · Totolink X15
Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability was found in the HTTP POST Request Handler of TOTOLINK X15. The issue affects unknown code of the file /boafrm/formTmultiAP. The manipulation of the submit-url...
PT-2025-24721 · D Link · D-Link Dir-632
Name of the Vulnerable Software and Affected Versions: D-Link DIR-632 version FW103B08 Description: A critical issue has been found in the HTTP POST Request Handler component, specifically affecting the FUN 00425fd8 function of the file /biurl grou. This issue leads to a stack-based buffer overfl...
PT-2025-25621 · Totolink · Totolink A3002Ru
Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002RU version 3.0.0-B20230809.1615 Description: A critical issue was found in the HTTP POST Request Handler component, specifically in the file /boafrm/formMultiAP. The manipulation of the submit-url argument leads to a buffer...
PT-2025-25620 · Totolink · Totolink Ex1200T
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical issue has been found in the HTTP POST Request Handler component, specifically in the file /boafrm/formMultiAP. The manipulation of the submit-url argument leads to a buff...
PT-2025-26256 · D Link · D-Link Dir-825
Name of the Vulnerable Software and Affected Versions: D-Link DIR-825 version 2.03 Description: A critical vulnerability has been found, affecting the sub 4091AC function of the HTTP POST Request Handler component. This issue leads to a stack-based buffer overflow and can be initiated remotely. T...
D-Link DIR-632 安全漏洞
The D-Link DIR-632 is a router from China's AUO D-Link. The D-Link DIR-632 suffers from a buffer overflow vulnerability that originates from the failure of the file /biurlgrou in the HTTP POST Request Handler component to properly validate the length and size of the input data, which can be...
CVE-2025-5851
A vulnerability was found in Tenda AC15 15.03.05.19multi. It has been rated as critical. This issue affects the function fromadvsetlanip of the file /goform/AdvSetLanip of the component HTTP POST Request Handler. The manipulation of the argument lanMask leads to buffer overflow. The attack may be...
CVE-2025-5851
A vulnerability was found in Tenda AC15 15.03.05.19multi. It has been rated as critical. This issue affects the function fromadvsetlanip of the file /goform/AdvSetLanip of the component HTTP POST Request Handler. The manipulation of the argument lanMask leads to buffer overflow. The attack may be...
PT-2025-25599 · Totolink · Totolink A702R
Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability was found in the TOTOLINK A702R, affecting unknown code of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the...
PT-2025-25586 · Totolink · Totolink T10
Name of the Vulnerable Software and Affected Versions: TOTOLINK T10 version 4.1.8cu.5207 Description: A critical vulnerability has been found in the setWiFiScheduleCfg function of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the desc argument leads...
PT-2025-25596 · Totolink · Totolink Ex1200T
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical vulnerability has been found in the TOTOLINK EX1200T router's embedded boa server, specifically in the /boafrm/formSysCmd file. This issue is related to a buffer overflow...
PT-2025-25602 · Totolink · Totolink A3002Ru
Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 4.0.0-B20230531.1404 Description: A critical vulnerability has been found in the HTTP POST Request Handler component of the affected software. The issue is related to the manipulation of the submit-url argument, which...
PT-2025-25597 · Totolink · Totolink Ex1200T
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical vulnerability was found in the TOTOLINK EX1200T, affecting some unknown functionality of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The...
PT-2025-25603 · Totolink · Totolink X15
Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability was found in the HTTP POST Request Handler component of the affected software. The issue is related to an unknown functionality of the file /boafrm/formMultiAP. T...
PT-2025-25595 · Totolink · Totolink Ex1200T
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical vulnerability was found in the TOTOLINK EX1200T, affecting an unknown function of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of...
PT-2025-25598 · Totolink · Totolink X15
Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical issue has been found, affecting an unknown part of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the submit-url argument leads to...
CVE-2025-5851 Tenda AC15 HTTP POST Request AdvSetLanip fromadvsetlanip buffer overflow
A vulnerability was found in Tenda AC15 15.03.05.19multi. It has been rated as critical. This issue affects the function fromadvsetlanip of the file /goform/AdvSetLanip of the component HTTP POST Request Handler. The manipulation of the argument lanMask leads to buffer overflow. The attack may be...
CVE-2025-5851
CVE-2025-5851 affects Tenda AC15 (version 15.03.05.19_multi). The vulnerability is in the fromadvsetlanip function of the HTTP POST Request Handler at /goform/AdvSetLanip, where manipulating the lanMask argument causes a buffer overflow. This can allow remote exploitation, and multiple sources no...