59 matches found
PT-2024-6577 · Tenda · Tenda Ax1803
Name of the Vulnerable Software and Affected Versions: Tenda AX1803 version 1.0.0.1 Description: The issue is related to a stack overflow in the fromAdvSetMacMtuWan function, specifically via the serverName parameter. This can be exploited by sending specially crafted POST requests, potentially...
CVE-2024-30621
Tenda AX1803 v1.0.0.1 contains a stack overflow via the serverName parameter in the function fromAdvSetMacMtuWan...
Tenda AX1803 安全漏洞
Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda China. A security vulnerability exists in Tenda AX1803 version v1.0.0.1, which originates from a discovery containing a stack overflow via the serverName parameter in the function fromAdvSetMacMtuWan...
CVE-2024-30621
CVE-2024-30621 affects Tenda AX1803 v1.0.0.1, with a stack overflow in the fromAdvSetMacMtuWan function exploitable via the serverName parameter. Documented impact includes potential effects on confidentiality, integrity, and availability. The issue is described across multiple sources (NVD/Red H...
CVE-2022-48123
TOTOlink A7100RU V7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the setting/delStaticDhcpRules function...
Command injection
TOTOlink A7100RU V7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the setting/delStaticDhcpRules function...
CVE-2022-48123
TOTOlink A7100RU V7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the setting/delStaticDhcpRules function...
TOTOLINK A7100RU 操作系统命令注入漏洞
The TOTOLINK A7100RU is a wireless router from China's Gion Electronics TOTOLINK. An operating system command injection vulnerability exists in the TOTOlink A7100RU version V7.4cu.2313B20191024, which stems from the servername parameter of the set/delStaticDhcpRules method containing a command...
CVE-2021-43461
Cross Site Scripting XSS vulnerability exists in Rumble Mail Server 0.51.3135 via the servername parameter...
Cross site scripting
Cross Site Scripting XSS vulnerability exists in Rumble Mail Server 0.51.3135 via the servername parameter...
Rumble Mail Server 跨站脚本漏洞
Rumble Mail Server is a mail server suite for SMTP ESMTPSA, HTTP, POP3, and IMAP4v1 from Daniel Gruno's personal developer.Rumble Mail Server version 0.51.3135 is vulnerable to a cross-site scripting vulnerability that stems from the servername parameter lacks a data validation filter for...
CVE-2022-25548
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service DoS via the serverName parameter...
Stack overflow
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service DoS via the serverName parameter...
CVE-2022-25548
CVE-2022-25548 affects Tenda AX1806 v1.0.0.1. The issue is a stack overflow in the function fromSetSysTime, which can allow remote attackers to trigger a Denial of Service via the serverName parameter. Multiple connected sources corroborate the same root cause and impact. The available documents ...
VulnCheck KEV: CVE-2013-2578
cgi-bin/admin/servetest in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12sign6 allows remote attackers to execute arbitrary commands via shell metacharacters in 1 the ServerName parameter and 2 other unspecified...
CVE-2019-17607
HongCMS 3.0.0 has XSS via the install/index.php servername parameter...
Design/Logic Flaw
HongCMS 3.0.0 has XSS via the install/index.php servername parameter...
CVE-2019-17607
CVE-2019-17607 affects HongCMS 3.0.0 with a cross-site scripting (XSS) vulnerability exploitable via the install/index.php servername parameter. Reported impact in CNVD/NVD notes client-side code execution; the CNVD entry explicitly describes XSS, while the NVD entry summarizes the risk. The avai...
CVE-2019-17607
HongCMS 3.0.0 has XSS via the install/index.php servername parameter...