Physicszq

**Name of the Vulnerable Software and Affected Versions** DCN DCME-320 versions up to 20260121 **Description** A flaw exists in the Web Management Backend component of DCN DCME-320. Specifically, manipulating the `ip list` argument within the `apply config` function of the `/function/system/basic/bridge cfg.php` file can lead to command injection. This issue is remotely exploitable, and details about the exploit have been publicly released. The vendor was notified but did not respond. **Recommendations** Versions up to 20260121: Avoid using the `ip list` parameter in the `apply config` function. Versions up to 20260121: As a temporary workaround, consider restricting access to the `/function/system/basic/bridge cfg.php` file.

**Name of the Vulnerable Software and Affected Versions** Tenda CH22 version 1.0.0.1 **Description** A stack-based buffer overflow issue exists in the httpd component of Tenda CH22 version 1.0.0.1. The vulnerability is located in the `fromIpsecitem` function within the `/goform/IPSECsave` file. Manipulation of the `ipsecno` argument can trigger the overflow, potentially allowing for remote exploitation. **Recommendations** Update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the `/goform/IPSECsave` file. Avoid manipulating the `ipsecno` argument.

**Name of the Vulnerable Software and Affected Versions** D-Link DI-500WF version 14.04.10A1T **Description** A security issue has been identified in D-Link DI-500WF. The vulnerability resides in an unknown function within the `/version upgrade.asp` file of the `jhttpd` component. Manipulation of the `path` argument can lead to os command injection, allowing for remote exploitation. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netgear R6900P and R7000P version 1.3.3.154 **Description** A critical vulnerability has been found in the HTTP Header Handler component, specifically affecting the function sub 16C4C. The manipulation of the `Host` argument leads to a buffer overflow. This issue can be exploited remotely. The vulnerability only affects products that are no longer supported by the maintainer. **Recommendations** For Netgear R6900P and R7000P version 1.3.3.154, as a temporary workaround, consider restricting access to the HTTP Header Handler component until a patch is available. Avoid using the `Host` argument in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Best Employee Management System version 1.0 SourceCodester 442035.0 **Description** A critical issue has been found in the software, affecting some unknown functionality of the file /admin/fetch product details.php. The manipulation of the `barcode` argument leads to SQL injection. The attack may be launched remotely. **Recommendations** For SourceCodester Best Employee Management System version 1.0, update to the latest release to mitigate risks. For SourceCodester 442035.0, update to the latest version immediately to mitigate risks. As a temporary workaround, consider validating all inputs to the `/admin/fetch product details.php` endpoint, specifically the `barcode` parameter, until a patch is available. Avoid using the `barcode` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Tenda AC1206 versions up to 20241027 **Description** The issue is related to a stack-based buffer overflow in the `ate Tenda mfg check usb()` and `ate Tenda mfg check usb3()` functions, located in the `/goform/ate` file of the Tenda AC1206 router's firmware. This occurs when the `arg` parameter is manipulated, allowing a remote attacker to potentially execute arbitrary code or cause a denial of service. **Recommendations** For Tenda AC1206 versions up to 20241027, as a temporary workaround, consider disabling the `ate Tenda mfg check usb()` and `ate Tenda mfg check usb3()` functions until a patch is available. Restrict access to the `/goform/ate` endpoint to minimize the risk of exploitation. Avoid using the `arg` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.