Jiangxiazhe

11 exploits Active since Apr 2025
CVE-2025-3577 WRITEUP MEDIUM WRITEUP
Zyxel AMG1302-T10B Firmware 2.00(AAJC.16)C0 - Authenticated Path Traversal
**UNSUPPORTED WHEN ASSIGNED** A path traversal vulnerability in the web management interface of the Zyxel AMG1302-T10B firmware version 2.00(AAJC.16)C0 could allow an authenticated attacker with administrator privileges to access restricted directories by sending a crafted HTTP request to an affected device.
CVSS 4.9
CVE-2025-45857 WRITEUP CRITICAL WRITEUP
EDIMAX CV7428NS v1.20 - Remote Code Execution via Command Parameter in mp Function
EDIMAX CV7428NS v1.20 was discovered to contain a remote code execution (RCE) vulnerability via the command parameter in the mp function.
CVSS 9.8
CVE-2025-45858 WRITEUP CRITICAL WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - OS Command Injection via FUN_00459fdc Function
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability via the FUN_00459fdc function.
CVSS 9.8
CVE-2025-45859 WRITEUP MEDIUM WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - Buffer Overflow via bandstr Parameter in formMapDelDevice Interface
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface.
CVSS 5.4
CVE-2025-45861 WRITEUP CRITICAL WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - Buffer Overflow via routername Parameter
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the routername parameter in the formDnsv6 interface.
CVSS 9.8
CVE-2025-45862 WRITEUP MEDIUM WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - Stack-based Buffer Overflow via interfacenameds Parameter
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the interfacenameds parameter in the formDhcpv6s interface.
CVSS 6.5
CVE-2025-45863 WRITEUP CRITICAL WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - Buffer Overflow via macstr Parameter in formMapDelDevice Interface
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the macstr parameter in the formMapDelDevice interface.
CVSS 9.8
CVE-2025-45864 WRITEUP MEDIUM WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - Buffer Overflow via addrPoolStart Parameter in formDhcpv6s Interface
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolStart parameter in the formDhcpv6s interface.
CVSS 5.4
CVE-2025-45865 WRITEUP CRITICAL WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - Buffer Overflow via dnsaddr Parameter in formDhcpv6s Interface
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the dnsaddr parameter in the formDhcpv6s interface.
CVSS 9.8
CVE-2025-45866 WRITEUP MEDIUM WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - Buffer Overflow via addrPoolEnd Parameter in formDhcpv6s Interface
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolEnd parameter in the formDhcpv6s interface.
CVSS 5.4
CVE-2025-45867 WRITEUP MEDIUM WRITEUP
TOTOLINK A3002R v4.0.0-B20230531.1404 - Stack-based Buffer Overflow via static_dns1 Parameter
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the static_dns1 parameter in the formIpv6Setup interface.
CVSS 5.4