125 matches found
CVE-2023-49351
A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy function...
Edimax BR6478AC Security Vulnerability
Edimax BR6478AC is a router from Edimax. A security vulnerability exists in Edimax BR6478AC V2 v1.23, which originates from a buffer overflow vulnerability in the /bin/webs binary...
CVE-2023-49351
A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy function...
PT-2024-13733 · Edimax · Edimax Br6478Ac
Name of the Vulnerable Software and Affected Versions: Edimax BR6478AC V2 firmware version v1.23 Description: A stack-based buffer overflow vulnerability in the /bin/webs binary allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy function...
CVE-2023-43868
D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via websGetVar function...
CVE-2023-41027
Credential disclosure in the '/webs/userpasswd.htm' endpoint in Juplink RX4-1500 Wifi router firmware versions V1.0.4 and V1.0.5 allows an authenticated attacker to leak the password for the administrative account via requests to the vulnerable endpoint...
Juplink RX4-1500 Security Vulnerability
The Juplink RX4-1500 is a wireless router from Juplink. A security vulnerability exists in the Juplink RX4-1500 Wifi router firmware versions V1.0.4 and V1.0.5, which originates from an information disclosure vulnerability in the /webs/userpasswd.htm endpoint. An attacker can exploit the...
CVE-2023-35779
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Seed Webs Seed Fonts plugin = 2.3.1 versions...
CVE-2023-35779
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Seed Webs Seed Fonts plugin = 2.3.1 versions...
CVE-2023-35779 WordPress Seed Fonts Plugin 2.3.1 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Seed Webs Seed Fonts plugin = 2.3.1 versions...
CVE-2023-35779
CVE-2023-35779 applies to the Seed Fonts plugin by Seed Webs for WordPress, affecting versions
WordPress plugin Seed Webs Seed Fonts 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2023-25306 · Seed Webs · Seed Webs Seed Fonts Plugin
Name of the Vulnerable Software and Affected Versions: Seed Webs Seed Fonts plugin versions prior to 2.3.1 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For versions prior to 2.3.1, update...
PT-2023-23557 · Edimax · Edimax Wireless Router N300
Name of the Vulnerable Software and Affected Versions: Edimax Wireless Router N300 Firmware BR-6428NS v4 Description: A Command Injection issue allows an attacker to execute arbitrary code via the setWAN function in /bin/webs without limitations. Recommendations: For Edimax Wireless Router N300...
Edimax Technology N300 命令注入漏洞
The Edimax Technology N300 is a wireless router from China's Xunzhou Technology Edimax Technology. A security vulnerability exists in the Edimax Technology N300 BR-6428NSv4 version, which originates from an attacker being able to execute arbitrary code without any restriction via the setWAN...
CVE-2023-31983
A Command Injection vulnerability in Edimax Wireless Router N300 Firmware BR-6428NSv4 allows attacker to execute arbitrary code via the mp function in /bin/webs without any limitations...
Edimax Technology N300 命令注入漏洞
The Edimax Technology N300 is a wireless router from China's Xunzhou Technology Edimax Technology. A security vulnerability exists in the Edimax Technology N300 BR-6428NSv4 version, which stems from the presence of a command injection vulnerability that allows an attacker to execute arbitrary cod...
Edimax Technology N300 命令注入漏洞
The Edimax Technology N300 is a wireless router from China's Xunzhou Technology Edimax Technology. A security vulnerability exists in the Edimax Technology N300 BR-6428NSv4 version, which stems from the presence of a command injection vulnerability that allows an attacker to execute arbitrary cod...
PT-2023-23556 · Edimax · Edimax Wireless Router N300
Name of the Vulnerable Software and Affected Versions: Edimax Wireless Router N300 Firmware BR-6428NS v4 Description: A Command Injection issue allows an attacker to execute arbitrary code via the formAccept function in "/bin/webs" without any limitations. Recommendations: For Edimax Wireless...
CVE-2022-29327
D-Link DIR-816 A2v1.10CNB04 was discovered to contain a stack overflow via the urladd parameter in /goform/websURLFilterAddDel...