CVE-2026-9462

A vulnerability was detected in Edimax EW-7438RPn 1.31. Affected by this vulnerability is the function formWpsProxyEnable of the file /goform/formWpsProxyEnable. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack can be launched remotely. The exploit is...

CVE-2026-2926 D-Link DWR-M960 LTE Configuration Endpoint formLteSetup sub_4237AC stack-based overflow

A flaw has been found in D-Link DWR-M960 1.01.07. This affects the function sub4237AC of the file /boafrm/formLteSetup of the component LTE Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be launched remotely. The...

The vulnerability of the built-in web server boa (/boafrm/formOneKeyAccessButton) of the TOTOLINK A702R router’s microprogramming software allows a intruder to trigger a service failure.

The vulnerability of the built-in web server boa /boafrm/formOneKeyAccessButton of the TOTOLINK A702R router’s microprogramming software is related to the issue of data being written outside the buffer in memory when processing the submit-url parameter. Exploiting this vulnerability allows a...

TOTOLINK X15 安全漏洞

TOTOLINK X15 is a network wireless extender from China Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK X15 version 1.0.0-B20230714.1105, which originates from a buffer overflow in the parameter submit-url of file /boafrm/formRoute in the component HTTP POST Request Handler...

CVE-2025-6953

A vulnerability, which was classified as critical, was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is...

TOTOLINK A3002RU和TOTOLINK A3002R 安全漏洞

TOTOLINK A3002RU and TOTOLINK A3002R are both products of China Gion Electronics TOTOLINK.TOTOLINK A3002RU is a wireless router product.TOTOLINK A3002R is a wireless router product. A buffer overflow vulnerability exists in the TOTOLINK A3002RU and TOTOLINK A3002R, which originates from the...

Cross site scripting

An issue was discovered in Form Tools through 3.0.20. A low-privileged user can trigger Reflected XSS when a viewing a form via the submissionid parameter, e.g., clients/forms/editsubmission.php?formid=1&viewid=1&submissionid=XSS...

capacitacionvital.com XSS vulnerability

Open Bug Bounty ID: OBB-587411 Description| Value ---|--- Affected Website:| capacitacionvital.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...