52 matches found
CVE-2023-27240
Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip...
CVE-2022-29321
D-Link DIR-816 A2v1.10CNB04 was discovered to contain a stack overflow via the lanip parameter in /goform/setNetworkLan...
CVE-2022-32054
Tenda AC10 USAC10V1.0RTLV15.03.06.26multiTD01 was discovered to contain a remote code execution RCE vulnerability via the lanIp parameter...
CVE-2022-28917
Tenda AX12 v22.03.01.21cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp...
VulnCheck KEV: CVE-2020-15916
goform/AdvSetLanip endpoint on Tenda AC15 AC1900 15.03.05.19 devices allows remote attackers to execute arbitrary system commands via shell metacharacters in the lanIp POST parameter...
TOTOLINK EX1800T lanIp Parameter Command Execution Vulnerability
The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T lanIp parameter. The vulnerability stems from the failure of the lanIp parameter of the setLanConfig interface of cstecgi .cgi to properly filter...
CVE-2023-51017
TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi...
CVE-2023-51017
TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi...
CVE-2023-51017
TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi...
TOTOLINK EX1800T 安全漏洞
The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T lanIp parameter. The vulnerability stems from the failure of the lanIp parameter of the setLanConfig interface of cstecgi .cgi to properly filter...
PT-2023-31732 · Totolink · Totolink Ex1800T
Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue allows for unauthorized arbitrary command execution. This is possible through the lanIp parameter of the setLanConfig interface in the cstecgi.cgi endpoint. Recommendation...
Tenda AX3 Command Injection Vulnerability (CNVD-2023-21670)
The Tenda Ax3 is an Ax1800 Gigabit Port Dual Band Wifi 6 Wireless Router from Tenda China. Tenda AX3 V16.03.12.11 suffers from a command injection vulnerability that stems from the lanip parameter of /goform/AdvSetLanip failing to correctly filter constructed command special characters, commands,...
CVE-2023-27240
Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip...
Command injection
Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip...
PT-2023-21023 · Tenda · Tenda Ax3
Name of the Vulnerable Software and Affected Versions: Tenda AX3 version 16.03.12.11 Description: A command injection issue was discovered via the lanip parameter at the "/goform/AdvSetLanip" API endpoint. This allows for potential exploitation. Recommendations: For Tenda AX3 version 16.03.12.11,...
Tenda AX3 命令注入漏洞
The Tenda Ax3 is an Ax1800 Gigabit Port Dual Band Wifi 6 Wireless Router from Tenda China. Tenda AX3 V16.03.12.11 suffers from a command injection vulnerability that stems from the lanip parameter of /goform/AdvSetLanip failing to correctly filter constructed command special characters, commands,...
CVE-2022-32054
Tenda AC10 USAC10V1.0RTLV15.03.06.26multiTD01 was discovered to contain a remote code execution RCE vulnerability via the lanIp parameter...
CVE-2022-32054
Tenda AC10 USAC10V1.0RTLV15.03.06.26multiTD01 was discovered to contain a remote code execution RCE vulnerability via the lanIp parameter...
CVE-2022-32054
Tenda AC10 USAC10V1.0RTLV15.03.06.26multiTD01 was discovered to contain a remote code execution RCE vulnerability via the lanIp parameter...
CVE-2022-32054
Summary of CVE-2022-32054 (Tenda AC10): Affects the Tenda AC10 router (US_AC10V1.0RTL_V15.03.06.26_multi_TD01). The issue is a remote code execution (RCE) vulnerability exploitable via the lanIp parameter. Several connected advisories specify this as a command injection flaw allowing an attacker ...