CVE-2026-5830

A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysToolChangePwd. Such manipulation of the argument oldPwd/newPwd/cfmPwd leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available...

CVE-2026-5830 Tenda AC15 SysToolChangePwd websGetVar stack-based overflow

A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysToolChangePwd. Such manipulation of the argument oldPwd/newPwd/cfmPwd leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available...

CVE-2026-5830 Tenda AC15 SysToolChangePwd websGetVar stack-based overflow

A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysToolChangePwd. Such manipulation of the argument oldPwd/newPwd/cfmPwd leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available...

CVE-2026-5830

A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysToolChangePwd. Such manipulation of the argument oldPwd/newPwd/cfmPwd leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available...

PT-2026-31564

Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A stack-based buffer overflow exists in the websGetVar function of the /goform/SysToolChangePwd file. Manipulation of the oldPwd, newPwd, and cfmPwd arguments can trigger this issue. The attack can be...

CVE-2025-60699

A buffer overflow vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592B20191022ALL within the global.so binary. The getSaveConfig function retrieves the httphost parameter from user input via websGetVar and copies it into a fixed-size stack buffer v13 using strcpy without...

EUVD-2025-175365

A command injection vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592B20191022ALL within the system.so binary. The setDiagnosisCfg function retrieves the ipDoamin parameter from user input via websGetVar and concatenates it directly into a ping system command executed via...

EUVD-2023-48231

Malicious code in bioql PyPI...

CVE-2025-1608

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...

D-Link DIR-619L B1 websGetVar Method Buffer Overflow Vulnerability

The D-Link DIR-619L B1 is a series of routers from the Chinese company AUO D-Link. The D-Link DIR-619L B1 suffers from a buffer overflow vulnerability that stems from a buffer overflow issue in the websGetVar method. No detailed vulnerability details are provided at this time...

CVE-2023-43868

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via websGetVar function...

CVE-2023-43868

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via websGetVar function...

Buffer overflow

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via websGetVar function...

D-Link DIR-619 缓冲区错误漏洞

The D-Link DIR-619L B1 is a series of routers from the Chinese company AUO D-Link. The D-Link DIR-619L B1 suffers from a buffer overflow vulnerability that stems from a buffer overflow issue in the websGetVar method. No detailed vulnerability details are provided at this time...

CVE-2023-43868

CVE-2023-43868 affects D-Link DIR-619L B1 firmware 2.02 (DIR-619L B1). The vulnerability is a buffer overflow in the websGetVar function. Public docs describe a buffer overflow condition that could enable remote exploitation leading to denial of service or service disruption; explicit exploit det...