EUVD-2022-49388

Malicious code in bioql PyPI...

D-Link DIR-823X Command Injection Vulnerability (CNVD-2025-23369)

The D-Link DIR-823X is a wireless router from China's AUO D-Link. The D-Link DIR-823X suffers from a command injection vulnerability that originates from the misuse of the parameter macList in the file /goform/setwifiblacklists, which can be exploited by an attacker to cause remote command...

CVE-2025-11098

CVE-2025-11098 affects D-Link DIR-823X firmware 250416. The vulnerability resides in an unknown function in /goform/set_wifi_blacklists where manipulating the macList argument enables remote command injection. Impact is high for confidentiality, integrity, and availability per NVD/CNA notes; expl...

The vulnerability of the formWifiMacFilterSet() function (/goform/setWrlFilterList) in the Tenda O3 wireless access point software allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the formWifiMacFilterSet function /goform/setWrlFilterList in the Tenda O3 wireless access point software lies in the issue where the operation exceeds the buffer limit in memory when processing the macList parameter. Exploiting this vulnerability could allow a malicious acto...

CVE-2025-1103

A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function setwifiblacklists of the file /goform/setwifiblacklists of the component HTTP POST Request Handler. The manipulation of the argument macList leads to null pointer dereferenc...

PT-2024-34556 · Trendnet · Trendnet Tew-652Brp +1

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-651BR version 2.04B1 TRENDnet TEW-652BRP version 3.04b01 TRENDnet TEW-652BRU version 1.00b12 Description: The issue is related to a Store Cross-site scripting XSS vulnerability. This vulnerability can be exploited via the macList...

TRENDnet TEW-755AP 缓冲区错误漏洞

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that originates from the lack of size checking of input data in the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacdeny sub415D7C function, which can be exploited by an...

PT-2022-27912 · Trendnet · Trendnet Tew755Ap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A stack overflow issue was discovered, related to the qcawifi.wifi%d vap%d.maclist parameter in the kick ban wifi mac deny sub 415D7C function. Recommendations: For TRENDnet TEW755AP version...

CVE-2021-46456

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanACLSettings. This vulnerability allows attackers to execute arbitrary commands via the wl0.0maclist parameter...

CVE-2021-46456

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanACLSettings. This vulnerability allows attackers to execute arbitrary commands via the wl0.0maclist parameter...

D-Link Dir-823-Pro 命令注入漏洞

D-Link Dir-823-Pro is a dual-band smart wireless router from China Youxun D-Link. D-Link DIR-823-Pro v1.0.2 is vulnerable to command injection, which can be exploited by attackers to execute arbitrary commands via the wl0. 0 maclist parameter to execute arbitrary commands...