1341 matches found
CVE-2025-6129
A vulnerability classified as critical was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. This vulnerability affects unknown code of the file /boafrm/formSaveConfig of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack can b...
CVE-2025-6128
A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. This affects an unknown part of the file /boafrm/formWirelessTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...
Astra Linux - уязвимость в linux-6.12
In the Linux kernel, the following vulnerability has been resolved: drm/msm/gem: prevent integer overflow in msmioctlgemsubmit The "submit-cmdi.size" and "submit-cmdi.offset" variables are u32 values that come from the user via the submitlookupcmds function. This addition could lead to an integer...
TOTOLINK EX1200T 安全漏洞
The TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1200T suffers from a buffer overflow vulnerability, which originates from the failure of the parameter submit-url in the file /boafrm/formSysCmd to correctly validate the length and size of the...
TOTOLINK EX1200T 安全漏洞
The TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1200T suffers from a buffer overflow vulnerability, which originates from the failure of the parameter submit-url in the file /boafrm/formNtp to correctly validate the length and size of the inpu...
TOTOLINK EX1200T 安全漏洞
TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1200T 4.1.2cu.5232B20210713 suffers from a buffer overflow vulnerability that originates from the parameter submit-url in file /boafrm/formSysLog failing to correctly validate the length size of the...
TOTOLINK X15 安全漏洞
TOTOLINK X15 is a network wireless extender from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK X15 version 1.0.0-B20230714.1105, which originates from the parameter submit-url in the file /boafrm/formSysLog failing to correctly validate the length and size ...
The vulnerability in the built-in web server boa (/boafrm/formSaveConfig) of the TOTOLINK X15 router’s microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the built-in web server boa /boafrm/formSaveConfig of the TOTOLINK X15 router’s microprogramming software lies in the copying of buffers without checking the size of input data during the processing of the submit-url parameter. Exploiting this vulnerability allows a malicious...
The vulnerability of the built-in web server boa (/boafrm/formStats) of the TOTOLINK X15 router’s microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the built-in web server boa /boafrm/formStats of the TOTOLINK X15 router’s microprogramming software is related to the copying of buffers without checking the size of input data during the processing of the submit-url parameter. Exploiting this vulnerability allows a remote...
The vulnerability of the built-in web server boa (/boafrm/formNtp) of the TOTOLINK X15 router’s microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the built-in web server boa /boafrm/formNtp of the TOTOLINK X15 router’s microprogramming software is related to the copying of buffers without checking the size of input data during the processing of the submit-url parameter. Exploiting this vulnerability allows a remote...
The vulnerability of the built-in web server boa (/boafrm/formDosCfg) of the TOTOLINK X15 router’s microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the built-in web server boa /boafrm/formDosCfg of the TOTOLINK X15 router’s microprogramming software is related to the copying of buffers without checking the size of input data during the processing of the submit-url parameter. Exploiting this vulnerability allows a remote...
RSJoomla! RSform!Pro 代码注入漏洞
RSJoomla! RSform!Pro is a form component from RSJoomla! A code injection vulnerability exists in RSJoomla! RSform!Pro versions 3.0.0 through 3.3.14, which stems from a flaw in the submit export functionality that could lead to remote code execution...
The vulnerability in the built-in web server boa (/boafrm/formReflashClientTbl) of TOTOLINK X15 router microprogramming software allows a perpetrator to execute arbitrary commands or cause a service failure.
The vulnerability of the built-in web server software boa /boafrm/formReflashClientTbl of TOTOLINK X15 routers is related to the issue where the operation exceeds the buffer limits in memory when processing the submit-url parameter. Exploiting this vulnerability allows a remote attacker to execut...
The vulnerability of the built-in web server boa (/boafrm/formDMZ) of TOTOLINK X15 router’s microprogramming software allows a perpetrator to execute arbitrary commands or cause service failure.
The vulnerability of the built-in web server boa /boafrm/formDMZ of TOTOLINK X15 router microprogramming software is related to the issue of the operation exceeding the buffer in memory when processing the submit-url parameter. Exploiting this vulnerability allows a remote attacker to execute...
PT-2025-25600 · Totolink · Totolink A3002Ru
Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002RU version 3.0.0-B20230809.1615 Description: A critical issue affects the HTTP POST Request Handler component due to a buffer overflow when processing the file /boafrm/formSysLog. The manipulation of the submit-url argument lead...
The vulnerability of the built-in web server boa (/boafrm/formWsc) of TOTOLINK X15 router’s microprogramming software allows a intruder to execute arbitrary commands or cause a service failure.
The vulnerability of the built-in web server boa /boafrm/formWsc of TOTOLINK X15 routers is related to the issue where the operation’s output goes beyond the buffer in memory when processing the submit-url parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary...
VulnCheck KEV: CVE-2020-29390
Zeroshell 3.9.3 contains a command injection vulnerability in the /cgi-bin/kerbynet StartSessionSubmit parameter that could allow an unauthenticated attacker to execute a system command by using shell metacharacters and the %0a character...
CVE-2025-5787
A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formWsc of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow...
CVE-2025-5786
A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been classified as critical. Affected is an unknown function of the file /boafrm/formDMZ of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launc...
CVE-2025-5785
A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This issue affects some unknown processing of the file /boafrm/formWirelessTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack ma...