CVE-2026-3716 Wavlink WL-WN579X3-C adm.cgi sub_401AD4 cross site scripting

A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This vulnerability affects the function sub401AD4 of the file /cgi-bin/adm.cgi. Executing a manipulation of the argument Hostname can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

VulnCheck KEV: CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

CVE-2020-13117

Vulnerability summary (CVE-2020-13117) : Wavlink WN575A4 and WN579X3 devices (and WN530G3A per CVE scope) are affected by an unauthenticated remote command-injection vulnerability in the login API that uses the key parameter. The connected nuclei template confirms remote command execution, tested...

Wavlink WN575A4 and WN579X3 Command Injection Vulnerabilities

The WAVLINK WN579X3 and WAVLINK WN575A4 are both products of China Ruiyin WAVLINK Corporation.The WAVLINK WN579X3 is a wireless access point.The WAVLINK WN575A4 is a router. A command injection vulnerability exists in the Wavlink WN575A4 and WN579X3, which can be exploited to execute an...