30 matches found
CVE-2026-2526 Wavlink WL-WN579A3 wireless.cgi multi_ssid command injection
A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. This impacts the function multissid of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument SSID2G2 results in command injection. The attack may be initiated remotely. The exploit has been made public and could b...
UTT 512W 安全漏洞
The UTT Progress 512W is an enterprise-grade wireless router designed for small office or home office SOHO environments for network scenarios with up to 50 people. The UTT Progressive 512W suffers from a buffer overflow vulnerability that originates from the incorrect operation of the strcpy...
UTT 520W 安全漏洞
The UTT Progress 520W is an enterprise-grade wireless router from Atech Technology UTT designed for office environments such as small businesses and remote branch offices. The UTT Progress 520W suffers from a buffer overflow vulnerability, which originates from the parameter addHostFilter in the...
EUVD-2018-2325
Malware in sbrugna...
CVE-2025-10359 Wavlink WL-WN578W2 wireless.cgi sub_404DBC os command injection
A vulnerability was detected in Wavlink WL-WN578W2 221110. This impacts the function sub404DBC of the file /cgi-bin/wireless.cgi. The manipulation of the argument macAddr results in os command injection. The attack can be launched remotely. The exploit is now public and may be used. The vendor wa...
D-Link DIR-600 安全漏洞
The D-Link DIR-600 is a wireless router from China's AUO D-Link. A command injection vulnerability exists in the D-Link DIR-600 rev B version 2.14b01, which stems from not properly handling cmd parameters and can be exploited by an attacker to potentially cause command injection...
Tenda FH1201 Buffer Overflow Vulnerability (CNVD-2025-16633)
The Tenda FH1201 is a wireless router from Tenda China. The Tenda FH1201 suffers from a buffer overflow vulnerability, which originates from the parameter mitssid in the file /goform/AdvSetWrlsafeset that fails to correctly validate the length and size of the input data, which can be exploited by...
CVE-2025-6560 Sapido Wireless Router - Exposure of Sensitive Information
Multiple wireless router models from Sapido have an Exposure of Sensitive Information vulnerability, allowing unauthenticated remote attackers to directly access a system configuration file and obtain plaintext administrator credentials. The affected models are out of support; replacing the devic...
D-Link DIR-816 /goform/wirelessApcli_5g File Buffer Overflow Vulnerability
The D-Link DIR-816 is a wireless router from China's AUO D-Link. The D-Link DIR-816 suffers from a buffer overflow vulnerability that originates from the failure of the parameters apclimode5g/apclienc5g/apclidefaultkey5g to correctly validate the length size of the input data in the file...
TOTOLINK A3000RU Access Control Error Vulnerability
The TOTOLINK A3000RU is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3000RU is vulnerable to an access control error vulnerability that stems from an improper access control issue in the IBMS profile handling component. No detailed vulnerability details are available at...
Tenda FH1202 安全漏洞
The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 is vulnerable to an access control error vulnerability that stems from improper access control. No detailed vulnerability details are available at this time...
TP-LINK WR845N 安全漏洞
The TP-LINK WR845N is a wireless router from China P&L TP-LINK. A security vulnerability exists in the TP-LINK WR845N version V4201214, version V4200909, and version V4190219, which originates from weak default credentials containing the administrator account...
TRENDnet TEW-651BR 安全漏洞
The TRENDnet TEW-651BR is a wireless router from Trendnet, Inc. A security vulnerability exists in the TRENDnet TEW-651BR version 2.04B1, TEW-652BRP version 3.04b01, and TEW-652BRU version 1.00b12, which originates in the /virtualserver.htm page's vsRuleVirtualServerName1.1. 10.0.0 parameter...
TOTOLINK A720R exportOvpn OS Command Injection Vulnerability
The TOTOLINK A720R is a wireless router. TOTOLINK A720R suffers from an operating system command injection vulnerability. The vulnerability stems from the function exportOvpn, and no detailed vulnerability details are provided at this time...
TOTOLINK LR350 Access Control Error Vulnerability
TOTOLINK LR350 is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK LR350 suffers from an Access Control Error vulnerability that originates from an Access Control Error vulnerability contained in the /cgi-bin/ExportSettings.sh file. No details of the vulnerability are provid...
Tenda FH1201 Buffer Overflow Vulnerability (CNVD-2025-12106)
The Tenda FH1201 is a wireless router from Tenda China. The Tenda FH1201 suffers from a buffer overflow vulnerability that originates from a page parameter on ip/goform/DhcpListClient that contains a stack-based buffer overflow vulnerability. No detailed vulnerability details are provided at this...
NETGEAR WN604 Information Disclosure Vulnerability
The NETGEAR WN604 is a small wireless router from NETGEAR. The NETGEAR WN604 suffers from an information disclosure vulnerability that originates in the parameter file of file/downloadFile.php, which is not sufficiently protected for sensitive information and can be exploited by an attacker to...
CVE-2024-29225
ELECOM wireless LAN routers allow a network-adjacent unauthenticated attacker to obtain the configuration file containing sensitive information by sending a specially crafted request...
TOTOLINK X6000R 安全漏洞
TOTOLINK X6000R is a wireless router from China Gion Electronics that supports WiFi 6 technology with high concurrent connections and dual-band transmission. A code execution vulnerability exists in TOTOLINK X6000R. The vulnerability stems from the application failing to properly filter special...
TOTOLINK A7100RU Command Injection Vulnerability (CNVD-2023-51676)
The TOTOLINK A7100RU is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A7100RU suffers from a command injection vulnerability that stems from the enabled parameter of cgi-bin/cstecgi.cgi failing to properly filter constructed command special characters, commands, etc., whi...