CVE-2026-2528

A vulnerability was identified in Wavlink WL-WN579A3 up to 20210219. Affected by this vulnerability is the function DeleteMaclist of the file /cgi-bin/wireless.cgi. The manipulation of the argument deletelist leads to command injection. Remote exploitation of the attack is possible. The exploit i...

CVE-2026-2526

A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. This impacts the function multissid of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument SSID2G2 results in command injection. The attack may be initiated remotely. The exploit has been made public and could b...

CVE-2026-2526 Wavlink WL-WN579A3 wireless.cgi multi_ssid command injection

A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. This impacts the function multissid of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument SSID2G2 results in command injection. The attack may be initiated remotely. The exploit has been made public and could b...

EUVD-2025-29092

Malicious code in bioql PyPI...

EUVD-2025-29091

Malicious code in bioql PyPI...

CVE-2025-10358 Wavlink WL-WN578W2 wireless.cgi sub_404850 os command injection

A security vulnerability has been detected in Wavlink WL-WN578W2 221110. This affects the function sub404850 of the file /cgi-bin/wireless.cgi. The manipulation of the argument deletelist leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed publicly...

CVE-2025-9149

A vulnerability was determined in Wavlink WL-NU516U1 M16U1V240425. This impacts the function sub4032E4 of the file /cgi-bin/wireless.cgi. This manipulation of the argument Guestssid causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclose...

WAVLINK WL-NU516U1 注入漏洞

WAVLINK WL-NU516U1 is a wireless print server from China Ruiyin WAVLINK. An injection vulnerability exists in the WAVLINK WL-NU516U1 M16U1V240425 version, which originates from a command injection due to incorrect operation of the parameter Guestssid in the file /cgi-bin/wireless.cgi...

The vulnerability in the wireless.cgi script of Netgear R8500 router software allows a hacker to induce a service failure.

The vulnerability in the wireless.cgi script of Netgear R8500 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of parameters opmode, opmodean, and opmodean2. Exploiting this vulnerability allows a malicious actor to caus...

The vulnerability in the wireless.cgi script of NETGEAR R7000P router software allows a hacker to induce a service failure.

The vulnerability in the wireless.cg script of NETGEAR R7000P router software is related to buffer overflow when processing the RADIUSAddr%dwla parameter. Exploiting this vulnerability allows a malicious actor to trigger a Denial-of-Service attack by sending a specially crafted POST request...

NETGEAR XR300 wireless.cgi component buffer overflow vulnerability

The NETGEAR XR300 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the NETGEAR XR300 v1.0.3.78, which originates from the passphrase parameter in the wireless.cgi component that fails to properly validate the length of the input data, and can be exploited by a remote...