Month: August 2023

A vulnerability was found in jeecgboot JimuReport up to 1.6.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Template Handler. The manipulation leads to injection. The attack can be launch… Continue reading CVE-2023-4450 (jimureport)→

TP-Link TL-WR940N V2, TP-Link TL-WR941ND V5 and TP-Link TL-WR841N V8 were discovered to contain a buffer overflow via the component /userRpm/AccessCtrlAccessRulesRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted … Continue reading CVE-2023-39745 (tl-wr841n_v8_firmware, tl-wr940n_v2_firmware, tl-wr941nd_v5_firmware)→

TP-Link WR841N V8, TP-Link TL-WR940N V2, and TL-WR941ND V5 were discovered to contain a buffer overflow via the radiusSecret parameter at /userRpm/WlanSecurityRpm. Continue reading CVE-2023-39747 (tl-wr841n_v8_firmware, tl-wr940n_v2_firmware, tl-wr941nd_v5_firmware)→

An issue in the component /userRpm/NetworkCfgRpm of TP-Link TL-WR1041N V2 allows attackers to cause a Denial of Service (DoS) via a crafted GET request. Continue reading CVE-2023-39748 (tl-wr1041n_v2_firmware)→

D-Link DAP-2660 v1.13 was discovered to contain a buffer overflow via the component /adv_resource. This vulnerability is exploited via a crafted GET request. Continue reading CVE-2023-39749 (dap-2660_firmware)→

D-Link DAP-2660 v1.13 was discovered to contain a buffer overflow via the f_ipv6_enable parameter at /bsc_ipv6. This vulnerability is exploited via a crafted POST request. Continue reading CVE-2023-39750 (dap-2660_firmware)→

TP-Link TL-WR941ND V6 were discovered to contain a buffer overflow via the pSize parameter at /userRpm/PingIframeRpm. Continue reading CVE-2023-39751 (tl-wr941nd_v6_firmware)→