20 matches found
CVE-2021-28160
Wireless-N WiFi Repeater REV 1.0 28.08.06.1 suffers from a reflected XSS vulnerability due to unsanitized SSID value when the latter is displayed in the /repeater.html page "Repeater Wizard" homepage section...
EUVD-2018-4427
Malware in sbrugna...
Shenzhen Aitemi M300 Wi-Fi Repeater Unauthenticated RCE (time param)
This module exploits an unauthenticated remote command injection vulnerability in the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02. The vulnerability lies in the 'time' parameter of the time configuration endpoint, which is passed unsanitized to a shell command executed via the date -s...
CVE-2025-34148
An unauthenticated OS command injection vulnerability exists in the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02. When configuring the device in WISP mode, the 'ssid' parameter is passed unsanitized to system-level scripts. This allows remote attackers within Wi-Fi range to inject...
Itemir M300 Wi-Fi Repeater 安全漏洞
The Itemir M300 Wi-Fi Repeater is a wireless repeater from Itemir China. A security vulnerability exists in the Itemir M300 Wi-Fi Repeater that stems from the time parameter not being cleaned, which could lead to an unauthenticated remote command injection attack...
Itemir M300 Wi-Fi Repeater 安全漏洞
The Itemir M300 Wi-Fi Repeater is a wireless repeater from China-based Itemir. A security vulnerability exists in the Itemir M300 Wi-Fi Repeater that stems from an uncleared ssid parameter, which could lead to an unauthenticated remote command injection attack...
D-Link DAP-1620 安全漏洞
The D-Link DAP-1620 is a wireless repeater extender from D-Link. The D-Link DAP-1620 suffers from a stack buffer overflow vulnerability. The vulnerability stems from improper handling of the parameter uid and can be exploited by an attacker to trigger a denial of service or execute malicious code...
D-Link DAP-1620 安全漏洞
The D-Link DAP-1620 is a wireless repeater extender from D-Link. The D-Link DAP-1620 suffers from a stack buffer overflow vulnerability that stems from the cookie handling component checkdwscookie function failing to properly validate the length and size of input data, which can be exploited by a...
TOTOLINK EX1800T setRebootScheCfg OS Command Injection Vulnerability
TOTOLINK EX1800T is a wireless repeater from China's Gion Electronics TOTOLINK. The TOTOLINK EX1800T suffers from an OS command injection vulnerability that originates from the setRebootScheCfg contained in /cgi-bin/cstecgi.cgi, and no details of the vulnerability are provided at this time...
TOTOLINK EX1800T setWiFiExtenderConfig OS Command Injection Vulnerability
TOTOLINK EX1800T is a wireless repeater from China's Gion Electronics TOTOLINK. The TOTOLINK EX1800T suffers from an OS command injection vulnerability, which stems from the incorrect operation of the function setWiFiExtenderConfig parameter apcliKey and key, and no detailed vulnerability details...
TOTOLINK EX1800T 安全漏洞
TOTOLINK EX1800T is a wireless repeater from China's Gion Electronics TOTOLINK. The TOTOLINK EX1800T suffers from an OS command injection vulnerability that originates from the setDmzCfg contained in /cgi-bin/cstecgi.cgi, and no details of the vulnerability are provided at this time...
TOTOLINK EX1800T 安全漏洞
TOTOLINK EX1800T is a wireless repeater from China's Gion Electronics TOTOLINK. The TOTOLINK EX1800T suffers from an OS command injection vulnerability, which stems from the incorrect operation of the function setWiFiExtenderConfig parameter apcliKey and key, and no detailed vulnerability details...
NetGear D1500 1.0.0.21_1.0.1PE Cross Site Scripting
Exploit Title: NetGear D1500 V1.0.0.211.0.1PE - 'Wireless Repeater' Stored Cross-Site Scripting XSS Date: 21 Dec 2018 Exploit Author: Securityium Vendor Homepage: https://www.netgear.com/ Version: V1.0.0.211.0.1PE Tested on: NetGear D1500 Home Router Contact: [email protected] Version :...
NetGear D1500 V1.0.0.21_1.0.1PE - (Wireless Repeater) Stored Cross-Site Scripting Vulnerability
Exploit Title: NetGear D1500 V1.0.0.211.0.1PE - 'Wireless Repeater' Stored Cross-Site Scripting XSS Exploit Author: Securityium Vendor Homepage: https://www.netgear.com/ Version: V1.0.0.211.0.1PE Tested on: NetGear D1500 Home Router Contact: email protected Version : Hardware version:...
Ayision Ays-WR01 Cross-Site Scripting Vulnerability
The Ayision Ays-WR01 is a wireless repeater from Ayision China. A cross-site scripting vulnerability exists in the wireless settings in the Ayision Ays-WR01 v28K.RPT.20161224 release. The vulnerability stems from a network system or product performing operations on memory without properly...
CVE-2018-12456
Intelbras NPLUG 1.0.0.14 wireless repeater devices have no CSRF token protection in the web interface, allowing attackers to perform actions such as changing the wireless SSID, rebooting the device, editing access control lists, or activating remote access...
Cross site request forgery (csrf)
Intelbras NPLUG 1.0.0.14 wireless repeater devices have no CSRF token protection in the web interface, allowing attackers to perform actions such as changing the wireless SSID, rebooting the device, editing access control lists, or activating remote access...
CVE-2018-12456
Intelbras NPLUG 1.0.0.14 wireless repeater devices have no CSRF token protection in the web interface, allowing attackers to perform actions such as changing the wireless SSID, rebooting the device, editing access control lists, or activating remote access...
CVE-2018-12456
Vulnerability summary (CVE-2018-12456): Intelbras NPLUG 1.0.0.14 wireless repeater web interface lacks CSRF token protection, enabling a CSRF-based attack that can modify the SSID, reboot the device, edit the access control list, or activate remote access. The CNVD entry confirms the CSRF vulnera...
Wireless Repeater BE126 - Remote Code Execution Exploit
Exploit for hardware platform in category web applications Exploit Title: WIFI Repeater BE126 – Remote Code Execution Date Publish: 09/09/2017 Exploit Authors: Hay Mizrachi, Omer Kaspi Contact: email protected, email protected Vendor Homepage: http://www.twsz.com Category: Webapps Version: 1.0...