CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/02/20 12:0 a.m.•6 views

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DWR-M960 formDdns file. The vulnerability stems from a misbehavior of the function sub4648F0 in the file /boafrm/formDdns in the DDNS Settings Handler component with respect to the...

9CVSS6.4AI score0.0062EPSS

CNNVD•added 2026/02/20 12:0 a.m.•3 views

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from an error in the operation of the submit-url parameter in the sub424AFC function of the Filter Configuration Endpoint component. This erro...

9CVSS7.5AI score0.00642EPSS

CNNVD•added 2026/02/20 12:0 a.m.•4 views

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from an incorrect operation of the submit-url parameter in the sub423E00 function within the Port Forwarding Configuration Endpoint component...

9CVSS7.5AI score0.00863EPSS

Positive Technologies•added 2026/02/20 12:0 a.m.•5 views

PT-2026-21288

A flaw has been found in D-Link DWR-M960 1.01.07. This impacts the function sub 4611CC of the file /boafrm/formNtp of the component NTP Configuration Endpoint. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be launched remotely. The...

9CVSS6.2AI score0.00642EPSS

Positive Technologies•added 2026/02/20 12:0 a.m.•4 views

PT-2026-21296

A vulnerability was found in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub 424AFC of the file /boafrm/formFilter of the component Filter Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may be...

9CVSS6.2AI score0.00642EPSS

NVD•added 2026/02/05 10:15 p.m.•6 views

CVE-2026-1970

A flaw has been found in Edimax BR-6258n up to 1.18. This issue affects the function formStaDrvSetup of the file /goform/formStaDrvSetup. This manipulation of the argument submit-url causes open redirect. The attack can be initiated remotely. The exploit has been published and may be used. The...

6.1CVSS0.00255EPSS

Exploits1References4

Vulnrichment•added 2026/02/05 10:2 p.m.•4 views

CVE-2026-1970 Edimax BR-6258n formStaDrvSetup redirect

5.1CVSS5.2AI score0.00255EPSS

Exploits1References4

CNVD•added 2026/01/14 12:0 a.m.•3 views

D-Link DWR-M920 sub_423848 function buffer overflow vulnerability

The D-Link DWR-M920 is a 4GLTE wireless router manufactured by Youxun D-Link. The D-Link DWR-M920 suffers from a buffer overflow vulnerability that stems from the incorrect manipulation of the parameter submit-url in the function sub423848 in the file /boafrm/formParentControl, for which no...

9CVSS6AI score0.00693EPSS

CNVD•added 2026/01/14 12:0 a.m.•2 views

D-Link DWR-M920 sub_464794 function buffer overflow vulnerability

The D-Link DWR-M920 is a 4GLTE wireless router manufactured by Youxun D-Link. The D-Link DWR-M920 suffers from a buffer overflow vulnerability that stems from the incorrect manipulation of the parameter submit-url in the function sub464794 in the file /boafrm/formDefRoute, for which no detailed...

9CVSS6AI score0.00693EPSS

RedhatCVE•added 2025/12/30 3:7 p.m.•4 views

CVE-2025-15193

A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. This affects the function sub423848 of the file /boafrm/formParentControl. Performing manipulation of the argument submit-url results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and...

9CVSS7AI score0.00693EPSS

RedhatCVE•added 2025/12/30 1:8 p.m.•8 views

CVE-2025-15189

A vulnerability was identified in D-Link DWR-M920 up to 1.1.50. This issue affects the function sub464794 of the file /boafrm/formDefRoute. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be us...

9CVSS7.1AI score0.00693EPSS

EUVD•added 2025/12/29 3:30 p.m.•3 views

EUVD-2025-205578

9CVSS6.8AI score0.00693EPSS

Exploits1References7

OSV•added 2025/12/29 3:16 p.m.•2 views

CVE-2025-15193

8.8CVSS6.2AI score0.00693EPSS

NVD•added 2025/12/29 3:16 p.m.•6 views

CVE-2025-15193

9CVSS0.00693EPSS

Cvelist•added 2025/12/29 3:2 p.m.•21 views

CVE-2025-15193 D-Link DWR-M920 formParentControl sub_423848 buffer overflow

9CVSS0.00693EPSS

CVE•added 2025/12/29 3:2 p.m.•17 views

CVE-2025-15193

The CVE-2025-15193 entry details a buffer overflow in D-Link DWR-M920 (firmware ≤ 1.1.50) caused by manipulating the submit-url argument in function sub_423848 of /boafrm/formParentControl. Exploitation can be remote, and public PoCs exist. Affected product is DWR-M920; root cause is improper han...

9CVSS8.7AI score0.00693EPSS

Exploits1References6Affected Software1

OSV•added 2025/12/29 1:15 p.m.•2 views

CVE-2025-15189

8.8CVSS6.4AI score0.00693EPSS

NVD•added 2025/12/29 1:15 p.m.•5 views

CVE-2025-15189

9CVSS0.00693EPSS