Lucene search
K

6 matches found

CNVD
CNVD
added 2025/03/12 12:0 a.m.1 views

TOTOLINK EX1800T Buffer Overflow Vulnerability

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1800T suffers from a buffer overflow vulnerability that originates from the parameter loginpass failing to properly validate the length size of the input data, which can be exploited by an attack...

9.8CVSS9.1AI score0.05981EPSS
Exploits1References1
OSV
OSV
added 2025/03/07 11:15 p.m.2 views

CVE-2025-2097

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1800T 9.1.0cu.2112B20220316. This issue affects the function setRptWizardCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument loginpass leads to stack-based buffer overflow. The attack may be initiat...

9.8CVSS6.4AI score0.05981EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/03/07 12:0 a.m.2 views

TOTOLINK EX1800T 安全漏洞

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1800T suffers from a buffer overflow vulnerability that originates from the parameter loginpass failing to properly validate the length size of the input data, which can be exploited by an attack...

9.8CVSS8.1AI score0.05981EPSS
Exploits1References7
Cvelist
Cvelist
added 2010/07/22 10:0 a.m.36 views

CVE-2009-4939

Multiple cross-site scripting XSS vulnerabilities in index.php in AdPeeps 8.5d1 allow remote attackers to inject arbitrary web script or HTML via the 1 uid parameter, 2 uid parameter in a loginlookup action, 3 uid parameter in an adminlogin action, 4 campaignid parameter in a createcampaign actio...

5.5AI score0.01931EPSS
Exploits1References8
NVD
NVD
added 2001/10/18 4:0 a.m.10 views

CVE-2001-0771

Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character in the "loginpass" field...

7.5CVSS6.8AI score0.02135EPSS
Exploits0References3
CVE
CVE
added 2001/10/12 4:0 a.m.39 views

CVE-2001-0771

CVE-2001-0771 affects Spytech SpyAnywhere 1.50. The NVD entry states remote attackers can gain administrator access by exploiting a single character in the loginpass field. Metrics indicate a network-based, low-attack-complexity, no-auth scenario with partial confidentiality, integrity, and avail...

7.5CVSS7.2AI score0.02135EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder