CVE-2026-10126

A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the argument selSSID results in buffer overflow. The attack can be launched remotely. The exploit has...

CVE-2025-70651

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid parameter of the formfastsettingwifiset function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2026-1158

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. This vulnerability affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Performing a manipulation of the argument ssid results in buffer overflow. The attack can be...

EUVD-2025-37368

Totolink LR350 v9.3.5u.6369B20220309 was discovered to contain a stack overflow via the ssid parameter in the sub421BAC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-63467

Totolink LR350 v9.3.5u.6369B20220309 was discovered to contain a stack overflow via the ssid parameter in the sub425400 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

EUVD-2021-14098

Malware in sbrugna...

EUVD-2025-24130

Malicious code in bioql PyPI...

EUVD-2025-24102

Malicious code in bioql PyPI...

CVE-2025-11134

A security vulnerability has been detected in Cudy TR1200 1.16.3-20230804-164635. Impacted is an unknown function of the file /cgi-bin/luci/admin/network/wireless/config/ of the component Wireless Settings Page. Such manipulation of the argument SSID leads to cross site scripting. It is possible ...

UTT 1200GW Buffer Overflow Vulnerability

The UTT 1200GW is an enterprise-grade wireless router from Atech Technology UTT designed to meet the networking needs of small to medium-sized businesses or large space office environments. The UTT 1200GW suffers from a buffer overflow vulnerability that stems from insufficient boundary validatio...

CVE-2025-9119

The Netis WF2419 router (version 1.2.29433) contains a cross-site scripting vulnerability in the Wireless Settings Page (/index.htm). The vulnerability arises from unsafely handling the SSID parameter, allowing an attacker to inject payload such as to trigger XSS. The attack is remote and has a ...

CVE-2025-43984

An issue was discovered on KuWFi GC111 devices Hardware Version: CPE-LM321V3.2, Software Version: GC111-GL-LM321V3.020191211. They are vulnerable to unauthenticated /goform/goformsetcmdprocess requests. A crafted POST request, using the SSID parameter, allows remote attackers to execute arbitrary...

CVE-2025-8834

A vulnerability has been found in JCG Link-net LW-N915R 17s.20.001.908. Affected is an unknown function of the file /wireless/basic.asp of the component Wireless Basic Settings Page. The manipulation of the argument Network Name leads to cross site scripting. It is possible to launch the attack...

CVE-2025-8834 JCG Link-net LW-N915R Wireless Basic Settings basic.asp cross site scripting

A vulnerability has been found in JCG Link-net LW-N915R 17s.20.001.908. Affected is an unknown function of the file /wireless/basic.asp of the component Wireless Basic Settings Page. The manipulation of the argument Network Name leads to cross site scripting. It is possible to launch the attack...

CVE-2025-8834 JCG Link-net LW-N915R Wireless Basic Settings basic.asp cross site scripting

A vulnerability has been found in JCG Link-net LW-N915R 17s.20.001.908. Affected is an unknown function of the file /wireless/basic.asp of the component Wireless Basic Settings Page. The manipulation of the argument Network Name leads to cross site scripting. It is possible to launch the attack...

CVE-2025-8834

The CVE-2025-8834 entry concerns JCG Link-net LW-N915R (firmware 17s.20.001.908) and affects the Wireless Basic Settings Page (/wireless/basic.asp). The issue is an input handling flaw in the Network Name parameter that enables cross-site scripting (XSS). Exploitation is described as remote; atta...

Edimax BR-6288ACL 代码注入漏洞

Edimax BR-6288ACL is a wireless router from China Xunzhou Edimax Company. A code injection vulnerability exists in the Edimax BR-6288ACL version 1.30, which stems from a cross-site scripting issue contained in the SSID parameter of the wireless5gbasic.asp file, which could lead to a remote attack...

NRadio N8-180 安全漏洞

The NRadio N8-180 is a wireless receiver from NRadio. A security vulnerability exists in the NRadio N8-180 NROS-1.9.2.n3.c5 version, which stems from vulnerability to command injection attacks via the 2.4 GHz and 5 GHz name parameters...

EnGenius ESR580 安全漏洞

The EnGenius ESR580 is a series of wireless access points from EnGenius. A security vulnerability exists in the EnGenius ESR580 version 1.1.30 and earlier, which stems from a stored cross-site scripting attack that allows remote attackers to conduct a stored cross-site scripting attack via the...

TP-LINK TL-WR841ND 安全漏洞

The TP-LINK TL-WR841ND is a wireless router from China P&L TP-LINK. A security vulnerability exists in TP-LINK TL-WR841ND 20240920 and earlier versions, which originates from the parameter ssid in the file /userRpm/popupSiteSurveyRpm.htm that can lead to a stack-based buffer overflow...