Wxhwxhwxh_Tutu

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6675nD version 1.12 **Description** Command injection is possible via a remote attack targeting the `stainfo()` function within the '/goform/stainfo' endpoint. The issue is triggered by the manipulation of the `interface` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6428NS version 1.10 **Description** A buffer overflow can be triggered remotely via the POST Request Handler component. The issue exists within the `formWanTcpipSetup()` function located in the `/goform/formWanTcpipSetup` file, specifically through the manipulation of the `pppUserName` variable. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6428NS version 1.10 **Description** A buffer overflow can be triggered remotely via the POST Request Handler component. The issue exists within the `formWirelessTbl()` function located in the '/goform/formWirelessTbl' endpoint when the `vapurl` argument is manipulated. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6228NC version 1.22 **Description** Command injection is possible in the POST Request Handler component via the `command` argument within the `mp()` function of the '/goform/mp' endpoint. This allows a remote attacker to execute arbitrary commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6428NS version 1.10 **Description** A buffer overflow exists in the POST Request Handler component. This issue occurs within the `formL2TPSetup()` function located in the '/goform/formL2TPSetup' endpoint when processing the `L2TPUserName` argument. This flaw allows a remote attacker to initiate an attack. **Recommendations** As a temporary workaround, restrict access to the '/goform/formL2TPSetup' endpoint or avoid using the `L2TPUserName` parameter until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6428NS version 1.10 **Description** An issue exists in the POST Request Handler component where the `formStaDrvSetup()` function in the '/goform/formStaDrvSetup' endpoint is susceptible to command injection. This occurs when the `stadrv ssid` argument is manipulated, allowing a remote attacker to execute arbitrary commands. **Recommendations** Avoid using the `stadrv ssid` parameter in the '/goform/formStaDrvSetup' endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6428NS version 1.10 **Description** A buffer overflow can be triggered remotely via the POST Request Handler component. The issue exists in the `formPPTPSetup()` function within the '/goform/formPPTPSetup' endpoint when manipulating the `pptpUserName` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Wavlink WL-WN570HA1 version R70HA1 V1410 221110 **Description** A command injection issue exists that allows remote attackers to execute arbitrary commands. The flaw is located in the `set sys adm()` function within the '/cgi-bin/adm.cgi' endpoint, triggered by manipulating the `Username` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Wavlink WL-WN570HA1 version R70HA1 V1410 221110 **Description** A command injection issue exists in the `set sys cmd()` function within the '/cgi-bin/adm.cgi' endpoint. This flaw allows a remote attacker to execute arbitrary commands by manipulating the `command` argument. **Recommendations** For version R70HA1 V1410 221110, as a temporary workaround, restrict access to the '/cgi-bin/adm.cgi' endpoint or disable the `set sys cmd()` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Wavlink WL-WN570HA1 version R70HA1 V1410 221110 **Description** A remote command injection issue exists in the `ping ddns()` function within the '/cgi-bin/adm.cgi' endpoint. Manipulating the `DDNS` argument allows an attacker to execute arbitrary commands on the system remotely. **Recommendations** For version R70HA1 V1410 221110, as the firmware has been removed from the official website and the product is no longer supported, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6428NS version 1.10 **Description** An issue in the POST Request Handler component allows remote command injection. This occurs through the manipulation of multiple arguments, including `ateFunc`, `ateGain`, `ateTxCount`, `ateChan`, `ateRate`, `ateMacID`, `e2pTxPower1`, `e2pTxPower2`, `e2pTxPower3`, `e2pTxPower4`, `e2pTxPower5`, `e2pTxPower6`, `e2pTxPower7`, `e2pTx2Power1`, `e2pTx2Power2`, `e2pTx2Power3`, `e2pTx2Power4`, `e2pTx2Power5`, `e2pTx2Power6`, `e2pTx2Power7`, `ateTxFreqOffset`, `ateMode`, `ateBW`, `ateAntenna`, `e2pTxFreqOffset`, `e2pTxPwDeltaB`, `e2pTxPwDeltaG`, `e2pTxPwDeltaMix`, `e2pTxPwDeltaN`, and `readE2P`, within the ' /goform/formWlanM' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6428NS version 1.10 **Description** Command injection is possible via a remote attack in the POST Request Handler component. The issue exists within the `formWlbasic()` function located in the `/goform/formWlbasic` file, where improper manipulation of the `repeaterSSID` argument allows for the execution of arbitrary commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink LR350 version 9.3.5u.6369 B20220309 **Description** A flaw exists in the `setWiFiBasicCfg()` function within the `/cgi-bin/cstecgi.cgi` file of the affected software. This issue is a buffer overflow that occurs when processing the `ssid` parameter. Successful exploitation of this issue by a remote attacker may lead to a denial-of-service condition. The exploit has been publicly disclosed. **Recommendations** Totolink LR350 version 9.3.5u.6369 B20220309: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC23 version 16.03.07.52 **Description** A security issue exists in the Tenda AC23 router. The `formSetPPTPUserList` function within the HTTP POST Request Handler component is susceptible to a buffer overflow when the argument list is manipulated. This issue can be triggered remotely. **Recommendations** Update to a newer version of Tenda AC23 that addresses this vulnerability. As a temporary workaround, consider restricting access to the `formSetPPTPUserList` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-618 versions 2.02/3.02 D-Link DIR-605L versions 2.02/3.02 **Description** A vulnerability was found in the file `/goform/formSetDomainFilter`, affecting an unknown function. The manipulation leads to improper access controls. The attack can only be initiated within the local network. This issue only affects products that are no longer supported by the maintainer. **Recommendations** For D-Link DIR-618 versions 2.02/3.02, consider disabling access to the `/goform/formSetDomainFilter` file until a solution is available. For D-Link DIR-605L versions 2.02/3.02, consider disabling access to the `/goform/formSetDomainFilter` file until a solution is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-823G version 1.0.2B05 20181207 **Description** A critical vulnerability was found in the D-Link DIR-823G, affecting the `SetUpnpSettings` function of the UPnP Service component. The manipulation of the `SOAPAction` argument leads to improper authorization, allowing for remote attacks. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer. **Recommendations** As a temporary workaround, consider disabling the `SetUpnpSettings` function until a patch is available. Restrict access to the `/HNAP1/` file to minimize the risk of exploitation. Avoid using the `SOAPAction` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-878 version 1.03 **Description** A vulnerability has been found in the D-Link DIR-878, affecting an unknown function of the file /dllog.cgi of the component HTTP POST Request Handler. This issue leads to information disclosure and can be exploited remotely. The exploit has been disclosed to the public and may be used. The vulnerability is related to insufficient protection of service data, which may allow an attacker to gain unauthorized access to protected information. **Recommendations** For D-Link DIR-878 version 1.03, consider disabling access to the /dllog.cgi file until a patch is available. Restrict access to the HTTP POST Request Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink LR350 version 9.3.5u.6369 B20220309 **Description** A security flaw exists in Totolink LR350. The issue is due to command injection within the `setTracerouteCfg` function of the `/cgi-bin/cstecgi.cgi` file, specifically in the POST Request Handler component. Manipulation of the `command` argument allows for remote execution of commands. The exploit for this issue has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10CNB05 R1B011D88210 **Description** A critical issue has been found in the ACL Handler component, specifically affecting an unknown part of the file `/goform/form2LocalAclEditcfg.cgi`. This issue leads to improper access controls and can be initiated remotely. The exploit for this issue has been publicly disclosed. **Recommendations** For version 1.10CNB05 R1B011D88210, as a temporary workaround, consider restricting access to the `/goform/form2LocalAclEditcfg.cgi` file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-605L version 2.13B01 BETA **Description** A critical issue has been found in the function `formWlanSetup Wizard` of the file `/goform/formWlanSetup Wizard`. The manipulation of the argument `webpage` leads to buffer overflow. This issue allows for remote exploitation. The exploit has been disclosed to the public and may be used. The vulnerability is related to the copying of a buffer without checking the size of the input data, which may allow an attacker to execute arbitrary code using the `webpage` parameter. **Recommendations** As a temporary workaround, consider disabling the `formWlanSetup Wizard` function until a patch is available. Restrict access to the `/goform/formWlanSetup Wizard` endpoint to minimize the risk of exploitation. Avoid using the `webpage` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.