CVE-2025-1610

A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...

EUVD-2025-4391

Malicious code in bioql PyPI...

EUVD-2025-4389

Malicious code in bioql PyPI...

CVE-2025-1608

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has be...

CVE-2025-1610

LB-LINK AC1900 Router 1.0.2 is affected by an OS command injection in the websGetVar function of /goform/set_blacklist. The vulnerability stems from manipulating the mac/enable parameter, potentially allowing remote exploitation. The CVE is supported by multiple sources (NVD, Red Hat, CVE lists) ...

CVE-2025-1608

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...

LB-LINK AC1900 命令注入漏洞

LB-LINK AC1900 is a wireless router from China Bilink LB-LINK. A command injection vulnerability exists in the LB-LINK AC1900 version 1.0.2, which originates from the parameter mac/enable in the file /goform/setblacklist that can lead to OS command injection...