139 matches found
Planet WGR-500 安全漏洞
The Planet WGR-500 is a WiFi router from Planet in Taiwan, China. A security vulnerability exists in the Planet WGR-500 v1.3411b190912 version, which stems from a stack buffer overflow in the submit-url and ipaddr request parameters, which could lead to the execution of arbitrary code...
EUVD-2025-32464
A vulnerability was determined in Belkin F9K1015 1.00.10. Impacted is an unknown function of the file /goform/formSetWanStatic. Executing manipulation of the argument mwanipaddr can lead to command injection. The attack may be performed from remote. The exploit has been publicly disclosed and may...
CVE-2025-11292
CVE-2025-11292 affects Belkin F9K1015 firmware v1.00.10. The vulnerability is in an unknown function of /goform/formBSSetSitesurvey where manipulating the wan_ipaddr parameter enables remote command injection. The issue is exploitable over the network, with a publicly available exploit, and vendo...
EUVD-2025-30386
Malicious code in bioql PyPI...
EUVD-2022-33664
Malicious code in bioql PyPI...
EUVD-2025-29074
Malicious code in bioql PyPI...
CVE-2025-10775
A security vulnerability has been detected in Wavlink WL-NU516U1 240425. This vulnerability affects the function sub4012A0 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to os command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-10775
A security vulnerability has been detected in Wavlink WL-NU516U1 240425. This vulnerability affects the function sub4012A0 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to os command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-10775
A security vulnerability has been detected in Wavlink WL-NU516U1 240425. This vulnerability affects the function sub4012A0 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to os command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-10775 Wavlink WL-NU516U1 login.cgi sub_4012A0 os command injection
A security vulnerability has been detected in Wavlink WL-NU516U1 240425. This vulnerability affects the function sub4012A0 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to os command injection. It is possible to launch the attack remotely. The exploit has been...
Wavlink WL-WN578W2 sub_401340 function command injection vulnerability
The Wavlink WL-WN578W2 is a wireless repeater from China's Wavlink. A command injection vulnerability exists in Wavlink WL-WN578W2 version 221110, which originates from the parameter ipaddr in the sub401340 function of the file /cgi-bin/login.cgi that fails to correctly filter the constructor...
CVE-2025-10325
A vulnerability was identified in Wavlink WL-WN578W2 221110. This impacts the function sub401340/sub401BA4 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to command injection. It is possible to launch the attack remotely. The exploit is publicly available and might...
CVE-2025-10325
A vulnerability was identified in Wavlink WL-WN578W2 221110. This impacts the function sub401340/sub401BA4 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to command injection. It is possible to launch the attack remotely. The exploit is publicly available and might...
CVE-2025-10325 Wavlink WL-WN578W2 login.cgi sub_401BA4 command injection
A vulnerability was identified in Wavlink WL-WN578W2 221110. This impacts the function sub401340/sub401BA4 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to command injection. It is possible to launch the attack remotely. The exploit is publicly available and might...
CVE-2025-10325 Wavlink WL-WN578W2 login.cgi sub_401BA4 command injection
A vulnerability was identified in Wavlink WL-WN578W2 221110. This impacts the function sub401340/sub401BA4 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to command injection. It is possible to launch the attack remotely. The exploit is publicly available and might...
CVE-2025-10325
CVE-2025-10325 affects Wavlink WL-WN578W2 (firmware 221110). The vulnerability centers on the sub_401340/sub_401BA4 function in /cgi-bin/login.cgi, where improper handling of the ipaddr parameter enables remote command injection. Public PoC/exploits exist, and multiple feeds confirm remote execut...
Wavlink WL-WN578W2 命令注入漏洞
The Wavlink WL-WN578W2 is a wireless repeater from China's Wavlink. A command injection vulnerability exists in Wavlink WL-WN578W2 version 221110, which originates from the parameter ipaddr in the sub401340 function of the file /cgi-bin/login.cgi that fails to correctly filter the constructor...
CVE-2025-10034
A vulnerability was found in D-Link DIR-825 1.08.01. This impacts the function getping6appstat of the file ping6response.cg of the component httpd. Performing manipulation of the argument ping6ipaddr results in buffer overflow. It is possible to initiate the attack remotely. The exploit has been...
D-Link DIR-825 安全漏洞
D-Link DIR-825 is a dual-band wireless router for SMB and SOHO environments from AUO D-Link, supporting 2.4GHz and 5GHz bands at the same time to meet the demand for multi-device HD video transmission. The D-Link DIR-825 suffers from a buffer overflow vulnerability that originates from the...
D-Link DIR-825 安全漏洞
The D-Link DIR-825 is a router from China-based AUO D-Link. The D-Link DIR-825 suffers from a buffer overflow vulnerability that originates from the incorrect operation of the parameter pingipaddr in the file pingresponse.cgi, which can be exploited by an attacker to crash the system by corruptin...