10 matches found
CVE-2025-15472
A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the function setDeviceURL of the file uapply.cgi of the component httpd . This manipulation of the argument DeviceURL causes os command injection. The attack can be initiated remotely. The exploit has been published and may be use...
CVE-2025-15472
A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the function setDeviceURL of the file uapply.cgi of the component httpd . This manipulation of the argument DeviceURL causes os command injection. The attack can be initiated remotely. The exploit has been published and may be...
CVE-2025-15472 TRENDnet TEW-811DRU httpd uapply.cgi setDeviceURL os command injection
A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the function setDeviceURL of the file uapply.cgi of the component httpd . This manipulation of the argument DeviceURL causes os command injection. The attack can be initiated remotely. The exploit has been published and may be...
CVE-2025-15472
TRENDnet TEW-811DRU firmware 1.0.2.0 is affected by an OS command injection in httpd/uapply.cgi setDeviceURL. Manipulation of the DeviceURL argument enables remote command execution with high impact. Exploit is published; vendor did not respond to disclosure. There is no publicly documented fix/u...
CVE-2025-15472 TRENDnet TEW-811DRU httpd uapply.cgi setDeviceURL os command injection
A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the function setDeviceURL of the file uapply.cgi of the component httpd . This manipulation of the argument DeviceURL causes os command injection. The attack can be initiated remotely. The exploit has been published and may be...
PT-2026-1523
Name of the Vulnerable Software and Affected Versions TRENDnet TEW-811DRU version 1.0.2.0 Description A flaw exists in TRENDnet TEW-811DRU version 1.0.2.0 related to the setDeviceURL function within the uapply.cgi file of the httpd component. Manipulation of the DeviceURL argument can lead to...
CVE-2025-5441
A vulnerability classified as critical was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function setDeviceURL of the file /goform/setDeviceURL. The manipulation of the argument DeviceURL...
CVE-2025-5441 Linksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 setDeviceURL os command injection
A vulnerability classified as critical was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function setDeviceURL of the file /goform/setDeviceURL. The manipulation of the argument DeviceURL...
CVE-2025-5441
Affected devices: Linksys RE6500, RE6250, RE6300, RE6350, RE7000, and RE9000 with firmware versions 1.0.013.001 through 1.2.07.001. Root cause: the function setDeviceURL in /goform/setDeviceURL accepts a DeviceURL argument whose manipulation enables OS command injection. Impact: remote exploitati...
Linksys多款产品 命令注入漏洞
Linksys RE6300 and others are products of Linksys, Inc.Linksys RE6300 is a wireless network signal extender.Linksys RE6250 is a wireless extender.Linksys RE6500 is a wireless extender. A command injection vulnerability exists in various Linksys products, which stems from an incorrect operation of...