Lucene search
K

44 matches found

EUVD
EUVD
added yesterday10 views

EUVD-2026-43254

A security flaw has been discovered in Wavlink WL-NU516U1 260515. This affects the function wlinkucisetvalue of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument lanip results in os command injection. The attack can be initiated remotely. The exploit has been released to the...

6.5CVSS6.5AI score0.01422EPSS
Exploits0References7
Cvelist
Cvelist
added 2 days ago15 views

CVE-2026-15513 Wavlink WL-NU516U1 adm.cgi wlink_uci_set_value os command injection

A security flaw has been discovered in Wavlink WL-NU516U1 260515. This affects the function wlinkucisetvalue of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument lanip results in os command injection. The attack can be initiated remotely. The exploit has been released to the...

6.5CVSS0.01422EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/29 5:15 a.m.11 views

CVE-2026-13538

A vulnerability was determined in Wavlink WL-NU516U1-A M16U1V240425. The affected element is the function sub401D68 of the file /cgi-bin/wireless.cgi of the component POST Parameter Handler. This manipulation of the argument SSID2G2/SSID5G2/AuthMethod2/WPAPSK12 causes command injection. Remote...

6.5CVSS6.4AI score0.01306EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/03/26 3:15 p.m.6 views

CVE-2026-4166

A vulnerability was found in Wavlink WL-NU516U1 240425. The impacted element is the function sub404F68 of the file /cgi-bin/login.cgi. The manipulation of the argument homepage/hostname results in cross site scripting. The attack can be launched remotely. The exploit has been made public and coul...

5.1CVSS4.1AI score0.00203EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/26 9:30 a.m.5 views

EUVD-2026-16146

A weakness has been identified in Wavlink WL-NU516U1 260227. This vulnerability affects the function ftext of the file /cgi-bin/nas.cgi. This manipulation of the argument Content-Length causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available t...

9CVSS8AI score0.0085EPSS
Exploits1References5
NVD
NVD
added 2026/03/26 9:16 a.m.3 views

CVE-2026-4861

A weakness has been identified in Wavlink WL-NU516U1 260227. This vulnerability affects the function ftext of the file /cgi-bin/nas.cgi. This manipulation of the argument Content-Length causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available t...

9CVSS0.0085EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/03/26 8:18 a.m.4 views

CVE-2026-4861

A weakness has been identified in Wavlink WL-NU516U1 260227. This vulnerability affects the function ftext of the file /cgi-bin/nas.cgi. This manipulation of the argument Content-Length causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available t...

9CVSS6.5AI score0.0085EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/03/26 8:18 a.m.13 views

CVE-2026-4861

CVE-2026-4861 affects Wavlink WL-NU516U1 (260227) via the /cgi-bin/nas.cgi, function ftext. The issue arises from manipulating the Content-Length argument, triggering a stack-based buffer overflow. Exploitation is remote and public, with a proof-of-concept in CVSS data. Impact indicators show hig...

9CVSS8AI score0.0085EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.10 views

PT-2026-28654

Name of the Vulnerable Software and Affected Versions Wavlink WL-NU516U1 version 260227 Description A stack-based buffer overflow exists in the ftext function of the /cgi-bin/nas.cgi file in Wavlink WL-NU516U1. The issue is triggered by manipulating the Content-Length argument, allowing for remot...

9CVSS6.1AI score0.0085EPSS
Exploits1References8
EUVD
EUVD
added 2026/03/16 3:30 p.m.3 views

EUVD-2026-12208

A vulnerability was found in Wavlink WL-NU516U1 240425. The impacted element is the function sub404F68 of the file /cgi-bin/login.cgi. The manipulation of the argument homepage/hostname results in cross site scripting. The attack can be launched remotely. The exploit has been made public and coul...

5.1CVSS4.1AI score0.00203EPSS
Exploits0References7
NVD
NVD
added 2026/03/16 2:19 p.m.4 views

CVE-2026-4166

A vulnerability was found in Wavlink WL-NU516U1 240425. The impacted element is the function sub404F68 of the file /cgi-bin/login.cgi. The manipulation of the argument homepage/hostname results in cross site scripting. The attack can be launched remotely. The exploit has been made public and coul...

5.1CVSS0.00203EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.8 views

WAVLINK WL-NU516U1 代码注入漏洞

WAVLINK WL-NU516U1 is a wireless print server developed by WAVLINK Corporation. The version 240425 of WAVLINK WL-NU516U1 has a code injection vulnerability. This vulnerability stems from incorrect handling of parameters homepage/hostname in the function sub404F68 within the file /cgi-bin/login.cg...

5.1CVSS5.7AI score0.00203EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/03/15 5:32 a.m.38 views

CVE-2026-4166 Wavlink WL-NU516U1 login.cgi sub_404F68 cross site scripting

A vulnerability was found in Wavlink WL-NU516U1 240425. The impacted element is the function sub404F68 of the file /cgi-bin/login.cgi. The manipulation of the argument homepage/hostname results in cross site scripting. The attack can be launched remotely. The exploit has been made public and coul...

5.1CVSS0.00203EPSS
Exploits0References6
NVD
NVD
added 2026/03/07 2:16 p.m.4 views

CVE-2026-3662

A vulnerability has been found in Wavlink WL-NU516U1 240425. This vulnerability affects the function usbp910 of the file /cgi-bin/adm.cgi. Such manipulation of the argument Prmode leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the publi...

7.2CVSS0.13287EPSS
Exploits1References4
OSV
OSV
added 2026/03/07 2:16 p.m.6 views

CVE-2026-3662

A vulnerability has been found in Wavlink WL-NU516U1 240425. This vulnerability affects the function usbp910 of the file /cgi-bin/adm.cgi. Such manipulation of the argument Prmode leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the publi...

7.2CVSS5.5AI score0.13287EPSS
Exploits1References4
NVD
NVD
added 2026/03/07 2:16 p.m.6 views

CVE-2026-3661

A flaw has been found in Wavlink WL-NU516U1 240425. This affects the function otanewupgrade of the file /cgi-bin/adm.cgi. This manipulation of the argument model causes command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor wa...

7.2CVSS0.12929EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/07 1:32 p.m.37 views

CVE-2026-3661 Wavlink WL-NU516U1 adm.cgi ota_new_upgrade command injection

A flaw has been found in Wavlink WL-NU516U1 240425. This affects the function otanewupgrade of the file /cgi-bin/adm.cgi. This manipulation of the argument model causes command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor wa...

5.8CVSS0.12929EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/07 12:0 a.m.7 views

WAVLINK WL-NU516U1 命令注入漏洞

WAVLINK WL-NU516U1 is a wireless print server developed by WAVLINK Corporation. The version 240425 of WAVLINK WL-NU516U1 has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter Prmode in the file/cgi-bin/adm.cgi, which may lead to command injection...

7.2CVSS5.8AI score0.13287EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/07 12:0 a.m.11 views

WAVLINK WL-NU516U1 命令注入漏洞

WAVLINK WL-NU516U1 is a wireless print server developed by WAVLINK Corporation. The version 240425 of WAVLINK WL-NU516U1 has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter “model” in the file /cgi-bin/adm.cgi, which may lead to command injecti...

7.2CVSS5.8AI score0.12929EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/07 12:0 a.m.11 views

PT-2026-23855

A flaw has been found in Wavlink WL-NU516U1 240425. This affects the function ota new upgrade of the file /cgi-bin/adm.cgi. This manipulation of the argument model causes command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor...

5.8CVSS5.6AI score0.12929EPSS
Exploits1References5
Rows per page
Query Builder