Lucene search
K

5 matches found

CNVD
CNVD
added 2025/08/20 12:0 a.m.4 views

D-Link DIR-818L Injection Vulnerability

The D-Link DIR-818L is a WiFi router from the Chinese company AUO D-Link. The D-Link DIR-818L suffers from an injection vulnerability that originates from a misbehavior in the file /htdocs/cgibin, which can be exploited by an attacker to bypass authentication and access restricted data by injecti...

8.8CVSS8.1AI score0.18145EPSS
Exploits1References1
CNVD
CNVD
added 2025/07/21 12:0 a.m.3 views

D-Link DIR-645 Command Injection Vulnerability

D-Link DIR-645 is a Gigabit wireless router for home and SMB users launched by D-Link in 2012. The D-Link DIR-645 suffers from a command injection vulnerability that stems from the failure of the file /htdocs/cgibin function ssdpcgimain in the component ssdpcgi to correctly filter constructed...

8.8CVSS7.7AI score0.0402EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/06/02 12:0 a.m.15 views

The vulnerability of the sys_login function in the /cgi-bin/login.cgi script of the WAVLINK QUANTUM D2G, QUANTUM D3G, WL-WN530G3A, WL-WN530HG3, WL-WN532A3, and WL-WN576K1 routers allows a hacker to execute arbitrary code.

The vulnerability of the syslogin function in the /cgi-bin/login.cgi script of the WAVLINK QUANTUM D2G, QUANTUM D3G, WL-WN530G3A, WL-WN530HG3, WL-WN532A3, and WL-WN576K1 routers is related to the copying of buffers without checking the size of the input data during the processing of the loginpage...

10CVSS8.2AI score0.00692EPSS
Exploits0References2Affected Software6
OSV
OSV
added 2023/12/15 5:15 p.m.2 views

CVE-2023-50089

A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication...

9.8CVSS5.9AI score0.04007EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/12/12 12:0 a.m.4 views

Tenda AX12 跨站请求伪造漏洞

Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda, China. A security vulnerability exists in Tenda AX12 version v22.03.01.21CN, which originates from a cross-site request forgery CSRF via /goform/SysToolRestoreSet...

8.8CVSS7.8AI score0.07454EPSS
Exploits1References2
Rows per page
Query Builder