Netgear-WN604 downloadFile.php - Information Disclosure

There is an information leakage vulnerability in the downloadFile.php interface of Netgear WN604. A remote attacker using file authentication can use this vulnerability to obtain the administrator account and password information of the wireless router, causing the router's background to be...

CVE-2026-9362

A security vulnerability has been detected in Edimax EW-7438RPn 1.12. This vulnerability affects the function formConnectionSetting of the file /goform/formConnectionSetting of the component Setting Handler. Such manipulation of the argument maxConn/timeOut leads to command injection. The attack...

CVE-2026-9296

A weakness has been identified in Edimax BR-6428NS 1.10. This impacts the function system of the file /goform/formWlanM of the component POST Request Handler. Executing a manipulation of the argument...

PT-2026-34683

Name of the Vulnerable Software and Affected Versions TP-Link TL-WR841N version v13 Description The TDDPv2 debug protocol uses DES-CBC encryption with a cryptographic key derived from default web management credentials. This makes the key predictable when the device maintains its default...

TOTOLINK A7100RU 操作系统命令注入漏洞

The TOTOLINK A7100RU is a wireless router produced by TOTOLINK, a Chinese company. The Totolink A7100RU 7.4cu.2313b20191024 version has a vulnerability related to operating system command injection. This vulnerability stems from an improper handling of the param parameter in the setNetworkCfg...

D-Link DI-8003 安全漏洞

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability that stems from the s parameter in the pppoelistopt.asp endpoint failing to properly validate the length size of the input data, which can be exploited by an attack...

D-Link DI-8003 安全漏洞

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect boundary checking in the user.asp script and can be exploited by an attacker to cause a denial of service...

D-Link DI-8003 安全漏洞

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability stems from improper handling of the name parameter in the /usbpaswd.asp endpoint, which can be exploited by an attacker to cause a denial of service...

UTT 1200GW 安全漏洞

UTT 1200GW is a wireless router produced by China's UT Technology Co., Ltd. The UTT 1200GW v2.5.3-170306 version contains a security vulnerability. This vulnerability stems from a buffer overflow in the timeRangeName parameter of the formConfigDnsFilterGlobal function, which could allow attackers...

NEC Platforms Aterm Series 安全漏洞

The NEC Platforms Aterm Series is a series of wireless router and network device products developed by the Japanese company NEC. The NEC Platforms Aterm Series contains security vulnerabilities, which stem from hidden features that may allow attackers to enable Telnet...

TP-Link TL-MR6400 安全漏洞

The TP-Link TL-MR6400 is a wireless router produced by TP-Link Corporation. The TP-Link TL-MR6400 v5.3 version has a security vulnerability, which stems from insufficient data cleaning in the Telnet CLI. This vulnerability may lead to command injection attacks...

SAPIDO RB-1732 安全漏洞

SAPIDO RB-1732 is a wireless router produced by SAPIDO Company in Taiwan, China. The SAPIDO RB-1732 V2.0.43 version has a security vulnerability. This vulnerability stems from the formSysCmd endpoint, which allows remote command execution, potentially enabling unverified attackers to execute...

D-Link DIR-513 安全漏洞

D-Link DIR-513 is a wireless router product from China's AUO D-Link. The D-Link DIR-513 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system or cause a denial of service...

CVE-2026-2528

Summary: CVE-2026-2528 affects Wavlink WL-WN579A3 up to 20210219. The vulnerable component is the function Delete_Mac_list in /cgi-bin/wireless.cgi, where manipulating the delete_list argument enables command injection. Remote exploitation is possible and exploits are publicly available; vendor h...

UTT 520W 安全漏洞

UTT 520W is a wireless router produced by China's UTTE Corporation. The UTT 520W version 1.7.7-180627 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters in the file/goform/formP2PLimitConfig, specifically the parameter except, which may lead to a...

UTT 520W security vulnerability

UTT 520W is a wireless router produced by China's UTTE Corporation. The UTT 520W version 1.7.7-180627 contains a security vulnerability. This vulnerability stems from incorrect operations on the strcpy function in the file/goform/ConfigExceptAli, which may lead to a buffer overflow...

CVE-2025-65349

A Stored Cross-Site Scripting XSS vulnerability in Web management interface in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to execute arbitrary scripts via a crafted payload due to unsanitized repeater AP SSID value when is displayed in any page at...

Tenda AX1806 安全漏洞

The Tenda AX1806 is a WiFi6 wireless router from Tenda China. The Tenda AX1806 suffers from a stack buffer overflow vulnerability that stems from the cloneType parameter of the sub65B5C function failing to properly validate the length size of the input data, which can be exploited by an attacker ...

UTT 520W 安全漏洞

The UTT 520W is a wireless router from China Aitai UTT. A security vulnerability exists in the UTT 520W version 1.7.7-180627, which originates from a buffer overflow in the operation of the function strcpy on the parameter wepkey1 in the file /goform/APSecurity, which could lead to the execution ...

UTT 520W 安全漏洞

The UTT 520W is a wireless router from China Aitai UTT. A security vulnerability exists in the UTT 520W version 1.7.7-180627, which originates from a buffer overflow in the operation of the function strcpy on the parameter timestart in the file /goform/formConfigNoticeConfig, which could lead to...