CVE-2026-4467

A vulnerability was found in Comfast CF-AC100 2.6.0.8. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET=wirelessdevicedissoc. The manipulation results in command injection. The attack can be executed remotely. The exploit has been made public and could be used. The...

CVE-2026-4467

A vulnerability was found in Comfast CF-AC100 2.6.0.8. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET&section=wirelessdevicedissoc. The manipulation results in command injection. The attack can be executed remotely. The exploit has been made public and could be used...

Tenda HG9 安全漏洞

The Tenda HG9 is a WiFi router produced by the Chinese company Tenda. The Tenda HG9 300001138 version has a security vulnerability. This vulnerability stems from incorrect handling of parameters “ssid” in the file “Wireless Configuration Endpoint” of the component “boaform/formWlanSetup”, which m...

EUVD-2025-27603

Malicious code in bioql PyPI...

CVE-2025-10962

A vulnerability was identified in Wavlink NU516U1 M16U1V240425. This impacts the function sub403198 of the file /cgi-bin/wireless.cgi of the component SetName Page. The manipulation of the argument mac5g leads to command injection. It is possible to initiate the attack remotely. The exploit is...

CVE-2025-55976

Intelbras IWR 3000N 1.9.8 exposes the Wi-Fi password in plaintext via the /api/wireless endpoint. Any unauthenticated user on the local network can directly obtain the Wi-Fi network password by querying this endpoint...

CVE-2025-55976

CVE-2025-55976 affects Intelbras IWR 3000N, firmware version 1.9.8, where the device exposes the Wi‑Fi password in plaintext via the unauthenticated /api/wireless endpoint. Any local-network user can query this endpoint to obtain the network password, per multiple connected sources (NVD entry and...

CVE-2025-55976

Intelbras IWR 3000N 1.9.8 exposes the Wi-Fi password in plaintext via the /api/wireless endpoint. Any unauthenticated user on the local network can directly obtain the Wi-Fi network password by querying this endpoint...

PT-2025-37079

Name of the Vulnerable Software and Affected Versions: Intelbras IWR 3000N version 1.9.8 Description: The Intelbras IWR 3000N version 1.9.8 exposes the Wi-Fi password in plaintext via the /api/wireless endpoint. An unauthenticated user on the local network can obtain the Wi-Fi network password by...

Linux Distros Unpatched Vulnerability : CVE-2024-38567

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: carl9170: add a proper sanity check for endpoints Syzkaller reports 1 hitting a warning which is caused by presence of a wrong endpoint type at the URB...

LibreNMS 跨站脚本漏洞

LibreNMS is an open source network monitoring system based on PHP and MySQL from the LibreNMS community. The system features customizable alerts, auto-discovery of network environments, and automatic updates. LibreNMS suffers from a cross-site scripting vulnerability that stems from a reflected...

PT-2024-34660 · Librenms · Librenms

Name of the Vulnerable Software and Affected Versions: LibreNMS versions prior to 24.10.0 Description: A Reflected Cross-Site Scripting XSS vulnerability in the metric parameter of the "/wireless" and "/health" endpoints allows attackers to inject arbitrary JavaScript, potentially compromising a...