CVE-2025-4368

A vulnerability, which was classified as critical, was found in Tenda AC8 16.03.34.06. Affected is the function formGetRouterStatus of the file /goform/MtuSetMacWan. The manipulation of the argument shareSpeed leads to buffer overflow. It is possible to launch the attack remotely. The exploit has...

The vulnerability of the “company_filter” parameter in the “user_list” component of the Advantech R-SeeNet monitoring software allows a hacker to execute arbitrary SQL queries.

The vulnerability of the “companyfilter” parameter in the “userlist” component of the Advantech R-SeeNet monitoring software for router status and functions is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execu...

The vulnerability of the “ord” parameter in the “company_list” component of the Advantech R-SeeNet monitoring software allows a hacker to perform cross-site scripting attacks.

The vulnerability of the monitoring software for the status and functions of Advantech R-SeeNet routers is related to incorrect validation of input data. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks by sending specially crafted SQL queries...