30 matches found
WAVLINK WN579X3 - Remote Command Execution
Remote Command Execution vulnerability in WAVLINK WN579X3 routers via pingIp parameter in /cgi-bin/adm.cgi. id: CVE-2023-3380 info: name: WAVLINK WN579X3 - Remote Command Execution author: pussycat0x severity: critical description: | Remote Command Execution vulnerability in WAVLINK WN579X3 route...
CVE-2026-5004
A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This impacts the function sub4019FC of the file /cgi-bin/firewall.cgi of the component UPNP Handler. Executing a manipulation of the argument UpnpEnabled can lead to stack-based buffer overflow. It is possible to launch the attack...
EUVD-2026-16937
A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This impacts the function sub4019FC of the file /cgi-bin/firewall.cgi of the component UPNP Handler. Executing a manipulation of the argument UpnpEnabled can lead to stack-based buffer overflow. It is possible to launch the attack...
CVE-2026-5004
A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This impacts the function sub4019FC of the file /cgi-bin/firewall.cgi of the component UPNP Handler. Executing a manipulation of the argument UpnpEnabled can lead to stack-based buffer overflow. It is possible to launch the attack...
CVE-2026-5004
CVE-2026-5004 affects Wavlink WL-WN579X3-C (firmware 231124). The issue is a stack-based overflow in the UPNP Handler’s function sub_4019FC (/cgi-bin/firewall.cgi) triggered by manipulating the UpnpEnabled argument. Exploitation can be remote, and public PoC details exist. Vendor has not provided...
Wavlink WL-WN579X3-C 安全漏洞
Wavlink WL-WN579X3-C is a wireless network extender produced by Wavlink Corporation. The Wavlink WL-WN579X3-C 231124 version contains a security vulnerability. This vulnerability stems from incorrect handling of the UpnpEnabled parameter, which may lead to a stack-based buffer overflow attack...
CVE-2026-3716
A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This vulnerability affects the function sub401AD4 of the file /cgi-bin/adm.cgi. Executing a manipulation of the argument Hostname can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-3715
A vulnerability was found in Wavlink WL-WN579X3-C 231124. This affects the function sub40139C of the file /cgi-bin/firewall.cgi. Performing a manipulation of the argument delflag results in stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made publ...
CVE-2026-3716 Wavlink WL-WN579X3-C adm.cgi sub_401AD4 cross site scripting
A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This vulnerability affects the function sub401AD4 of the file /cgi-bin/adm.cgi. Executing a manipulation of the argument Hostname can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-3716
CVE-2026-3716 affects Wavlink WL-WN579X3-C (firmware version 231124). A vulnerability in the function sub_401AD4 of /cgi-bin/adm.cgi allows cross-site scripting via manipulation of the Hostname argument. The issue can be exploited remotely, and public exploit details exist. A fixed firmware build...
CVE-2026-3715
CVE-2026-3715 affects Wavlink WL-WN579X3-C (firmware 231124). The vulnerability is in /cgi-bin/firewall.cgi, function sub_40139C: manipulating the del_flag argument triggers a stack-based buffer overflow. It is exploitable remotely via the network, with exploit maturity noted as PROOF-OF-CONCEPT....
PT-2026-23923
Name of the Vulnerable Software and Affected Versions Wavlink WL-WN579X3-C versions prior to 20260226 Description A stack-based buffer overflow exists in the function sub 40139C of the file /cgi-bin/firewall.cgi. Manipulation of the del flag argument can trigger this issue, allowing for remote...
Wavlink WL-WN579X3-C 安全漏洞
Wavlink WL-WN579X3-C is a wireless network extender produced by Wavlink Corporation. The Wavlink WL-WN579X3-C 231124 version contains a security vulnerability. This vulnerability arises from incorrect handling of the parameter “delflag” in the file /cgi-bin/firewall.cgi, which may lead to a stack...
PT-2026-23924
A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This vulnerability affects the function sub 401AD4 of the file /cgi-bin/adm.cgi. Executing a manipulation of the argument Hostname can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...
Exploit for CVE-2026-3165
CVE INDEX Wavlink WL-WN578W2 vul1vul8 Wavlink...
VulnCheck KEV: CVE-2020-13117
Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...
CVE-2023-3380
A vulnerability classified as critical has been found in Wavlink WN579X3 up to 20230615. Affected is an unknown function of the file /cgi-bin/adm.cgi of the component Ping Test. The manipulation of the argument pingIp leads to injection. It is possible to launch the attack remotely. The exploit h...
CVE-2023-3380
A vulnerability classified as critical has been found in Wavlink WN579X3 up to 20230615. Affected is an unknown function of the file /cgi-bin/adm.cgi of the component Ping Test. The manipulation of the argument pingIp leads to injection. It is possible to launch the attack remotely. The exploit h...
Design/Logic Flaw
A vulnerability classified as critical has been found in Wavlink WN579X3 up to 20230615. Affected is an unknown function of the file /cgi-bin/adm.cgi of the component Ping Test. The manipulation of the argument pingIp leads to injection. It is possible to launch the attack remotely. The exploit h...
CVE-2023-3380 Wavlink WN579X3 Ping Test adm.cgi injection
A vulnerability classified as critical has been found in Wavlink WN579X3 up to 20230615. Affected is an unknown function of the file /cgi-bin/adm.cgi of the component Ping Test. The manipulation of the argument pingIp leads to injection. It is possible to launch the attack remotely. The exploit h...