38 matches found
WAVLINK WN535 G3 - Information Disclosure
WAVLINK WN535 G3 M35G3R.V5030.180927 is susceptible to information disclosure in livecheck.shtml. An attacker can obtain sensitive router information via execution of the exec cmd function and thereby possibly obtain additional sensitive information, modify data, and/or execute unauthorized...
EUVD-2022-37529
Malicious code in bioql PyPI...
CVE-2022-30489
WAVLINK WN535 G3 was discovered to contain a cross-site scripting XSS vulnerability via the hostname parameter at /cgi-bin/login.cgi...
CVE-2022-34576
A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
CVE-2022-34576
A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
CVE-2022-34577
A vulnerability in adm.cgi of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
CVE-2022-34577
A vulnerability in adm.cgi of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
CVE-2022-34577
A vulnerability in adm.cgi of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
CVE-2022-34576
A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
Cross site request forgery (csrf)
A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
CVE-2022-34577
CVE-2022-34577 affects WAVLINK WN535 G3 (firmware M35G3R.V5030.180927) due to an adm.cgi component vulnerability that allows arbitrary code execution via a crafted POST request. Multiple connected sources confirm a remote-code-execution vector through POST to adm.cgi, with high impact (C/H/I/A) a...
CVE-2022-34577
A vulnerability in adm.cgi of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
CVE-2022-34576
WAVLINK WN535 G3 M35G3R.V5030.180927 is affected by a flaw in /cgi-bin/ExportAllSettings.sh that lets an attacker execute arbitrary code via a crafted POST request. Exploitation could lead to unauthorized access to router settings and potentially data disclosure or modification, as described in t...
CVE-2022-34576
A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request...
PT-2022-22216 · Wavlink · Wavlink Wn535G3
Name of the Vulnerable Software and Affected Versions: WAVLINK WN535 G3 version M35G3R.V5030.180927 Description: A vulnerability in the adm.cgi component allows attackers to execute arbitrary code via a crafted POST request. Recommendations: For WAVLINK WN535 G3 version M35G3R.V5030.180927,...
WAVLINK WN535 G3 安全漏洞
WAVLINK WN535 G3 is a wireless router from China RuiYin Technology WAVLINK. A security vulnerability exists in WAVLINK WN535 G3 M35G3R.V5030.180927 version. An attacker can exploit the vulnerability to execute arbitrary code via a specially crafted POST request...
PT-2022-22215 · Wavlink · Wavlink Wn535G3
Name of the Vulnerable Software and Affected Versions: WAVLINK WN535 G3 M35G3R.V5030.180927 Description: A vulnerability exists in the /cgi-bin/ExportAllSettings.sh endpoint, allowing attackers to execute arbitrary code via a crafted POST request. Recommendations: For WAVLINK WN535 G3...
WAVLINK WN535 G3 安全漏洞
The WAVLINK WN535 G3 is a wireless router from China-based RuiYin Technology WAVLINK. A security vulnerability exists in the WAVLINK WN535 G3's firmware version M35G3R.V5030.180927, which stems from its adm.cgi component that allows an attacker to execute arbitrary code via a crafted POST request...
WAVLINK WN535 G3 Information Disclosure Vulnerability
WAVLINK WN535 G3 is a wireless router from WAVLINK China.WAVLINK WN535 G3 version M35G3R.V5030.180927 is vulnerable to an information disclosure vulnerability that stems from improper authorization management on the livemfg.shtml page, which could be exploited by an attacker to obtain sensitive...
CVE-2022-31845
A vulnerability in livecheck.shtml of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to obtain sensitive router information via execution of the exec cmd function...