Jiangxiazhe

11 exploits Active since Apr 2025
CVE-2025-3577 WRITEUP MEDIUM WRITEUP
Zyxel Amg1302-t10b Firmware - Path Traversal
**UNSUPPORTED WHEN ASSIGNED** A path traversal vulnerability in the web management interface of the Zyxel AMG1302-T10B firmware version 2.00(AAJC.16)C0 could allow an authenticated attacker with administrator privileges to access restricted directories by sending a crafted HTTP request to an affected device.
CVSS 4.9
CVE-2025-45857 WRITEUP CRITICAL WRITEUP
Edimax Cv-7428ns Firmware - Code Injection
EDIMAX CV7428NS v1.20 was discovered to contain a remote code execution (RCE) vulnerability via the command parameter in the mp function.
CVSS 9.8
CVE-2025-45858 WRITEUP CRITICAL WRITEUP
Totolink A3002r Firmware - OS Command Injection
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability via the FUN_00459fdc function.
CVSS 9.8
CVE-2025-45859 WRITEUP MEDIUM WRITEUP
Totolink A3002r Firmware - Buffer Overflow
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface.
CVSS 5.4
CVE-2025-45861 WRITEUP CRITICAL WRITEUP
Totolink A3002r Firmware - Buffer Overflow
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the routername parameter in the formDnsv6 interface.
CVSS 9.8
CVE-2025-45862 WRITEUP MEDIUM WRITEUP
Totolink A3002r Firmware - Stack Buffer Overflow
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the interfacenameds parameter in the formDhcpv6s interface.
CVSS 6.5
CVE-2025-45863 WRITEUP CRITICAL WRITEUP
Totolink A3002r Firmware - Buffer Overflow
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the macstr parameter in the formMapDelDevice interface.
CVSS 9.8
CVE-2025-45864 WRITEUP MEDIUM WRITEUP
Totolink A3002r Firmware - Buffer Overflow
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolStart parameter in the formDhcpv6s interface.
CVSS 5.4
CVE-2025-45865 WRITEUP CRITICAL WRITEUP
Totolink A3002r Firmware - Buffer Overflow
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the dnsaddr parameter in the formDhcpv6s interface.
CVSS 9.8
CVE-2025-45866 WRITEUP MEDIUM WRITEUP
Totolink A3002r Firmware - Buffer Overflow
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolEnd parameter in the formDhcpv6s interface.
CVSS 5.4
CVE-2025-45867 WRITEUP MEDIUM WRITEUP
Totolink A3002r Firmware - Stack Buffer Overflow
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the static_dns1 parameter in the formIpv6Setup interface.
CVSS 5.4