Li Tengzheng

205 exploits Active since Feb 2026
CVE-2026-3978 WRITEUP HIGH WRITEUP
D-Link DIR-513 1.10 - Buffer Overflow
A vulnerability was detected in D-Link DIR-513 1.10. The impacted element is an unknown function of the file /goform/formEasySetupWizard3. The manipulation of the argument wan_connected results in stack-based buffer overflow. The attack can be launched remotely. The exploit is now public and may be used.
CVSS 8.8
CVE-2026-3768 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A security vulnerability has been detected in Tenda F453 1.0.0.3. Affected by this vulnerability is the function formWrlExtraSet of the file /goform/WrlExtraSet. The manipulation of the argument GO leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.
CVSS 8.8
CVE-2026-3769 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was detected in Tenda F453 1.0.0.3. Affected by this issue is the function WrlclientSet of the file /goform/WrlclientSet. The manipulation of the argument GO results in stack-based buffer overflow. The attack can be executed remotely. The exploit is now public and may be used.
CVSS 8.8
CVE-2026-3729 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3/3.As - Buffer Overflow
A vulnerability was identified in Tenda F453 1.0.0.3/3.As. Impacted is the function fromPptpUserAdd of the file /goform/PPTPDClient. Such manipulation of the argument username/opttype leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
CVSS 8.8
CVE-2026-3732 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.
CVSS 8.8
CVE-2026-3715 WRITEUP HIGH WRITEUP
Wavlink WL-WN579X3-C 231124 - Buffer Overflow
A vulnerability was found in Wavlink WL-WN579X3-C 231124. This affects the function sub_40139C of the file /cgi-bin/firewall.cgi. Performing a manipulation of the argument del_flag results in stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made public and could be used. Upgrading to version 20260226 is able to mitigate this issue. You should upgrade the affected component. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.
CVSS 8.8
CVE-2026-3716 WRITEUP LOW WRITEUP
Wavlink WL-WN579X3-C 231124 - Cross-Site Scripting via Hostname Parameter in adm.cgi
A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This vulnerability affects the function sub_401AD4 of the file /cgi-bin/adm.cgi. Executing a manipulation of the argument Hostname can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized. Upgrading to version 20260226 is able to resolve this issue. The affected component should be upgraded. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.
CVSS 2.4
CVE-2026-3726 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability has been found in Tenda F453 1.0.0.3. This affects the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS 8.8
CVE-2026-3727 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was found in Tenda F453 1.0.0.3. This vulnerability affects the function sub_3C6C0 of the file /goform/QuickIndex. The manipulation of the argument mit_linktype/PPPOEPassword results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used.
CVSS 8.8
CVE-2026-3728 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3/1.If - Buffer Overflow
A vulnerability was determined in Tenda F453 1.0.0.3/1.If. This issue affects the function fromSetCfm of the file /goform/setcfm. This manipulation of the argument funcname/funcpara1 causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.
CVSS 8.8
CVE-2026-3678 WRITEUP HIGH WRITEUP
Tenda FH451 1.0.0.9 - Buffer Overflow
A vulnerability was determined in Tenda FH451 1.0.0.9. Affected is the function sub_3C434 of the file /goform/AdvSetWan. This manipulation of the argument wanmode/PPPOEPassword causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.
CVSS 8.8
CVE-2026-3679 WRITEUP HIGH WRITEUP
Tenda FH451 1.0.0.9 - Buffer Overflow
A vulnerability was identified in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex. Such manipulation of the argument mit_linktype/PPPOEPassword leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available and might be used.
CVSS 8.8
CVE-2026-3677 WRITEUP HIGH WRITEUP
Tenda FH451 1.0.0.9 - Buffer Overflow
A vulnerability was found in Tenda FH451 1.0.0.9. This impacts the function fromSetCfm of the file /goform/setcfm. The manipulation of the argument funcname/funcpara1 results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used.
CVSS 8.8
CVE-2026-3399 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer of the component httpd. The manipulation of the argument dips leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be used.
CVSS 8.8
CVE-2026-3398 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was determined in Tenda F453 1.0.0.3. Affected is the function fromAdvSetWan of the file /goform/AdvSetWan of the component httpd. Executing a manipulation of the argument wanmode/PPPOEPassword can lead to buffer overflow. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.
CVSS 8.8
CVE-2026-3376 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A security vulnerability has been detected in Tenda F453 1.0.0.3. Affected by this vulnerability is the function fromSafeMacFilter of the file /goform/SafeMacFilter. Such manipulation of the argument page leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.
CVSS 8.8
CVE-2026-3377 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was detected in Tenda F453 1.0.0.3. Affected by this issue is the function fromSafeUrlFilter of the file /goform/SafeUrlFilter. Performing a manipulation of the argument page results in buffer overflow. The attack can be initiated remotely. The exploit is now public and may be used.
CVSS 8.8
CVE-2026-3378 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromqossetting of the file /goform/qossetting. Executing a manipulation of the argument qos can lead to buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.
CVSS 8.8
CVE-2026-3379 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability has been found in Tenda F453 1.0.0.3. This vulnerability affects the function fromSetIpBind of the file /goform/SetIpBind. The manipulation of the argument page leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS 8.8
CVE-2026-3380 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was found in Tenda F453 1.0.0.3. This issue affects the function frmL7ImForm of the file /goform/L7Im. The manipulation of the argument page results in buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used.
CVSS 8.8
CVE-2026-3271 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was found in Tenda F453 1.0.0.3. This impacts the function fromP2pListFilter of the file /goform/P2pListFilterof of the component httpd. The manipulation of the argument page results in buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used.
CVSS 8.8
CVE-2026-3272 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was determined in Tenda F453 1.0.0.3. Affected is the function fromDhcpListClient of the file /goform/DhcpListClient of the component httpd. This manipulation of the argument page causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.
CVSS 8.8
CVE-2026-3273 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component httpd. Such manipulation of the argument mit_ssid_index leads to buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
CVSS 8.8
CVE-2026-3274 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A security flaw has been discovered in Tenda F453 1.0.0.3. Affected by this issue is the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Performing a manipulation of the argument page results in buffer overflow. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.
CVSS 8.8
CVE-2026-3275 WRITEUP HIGH WRITEUP
Tenda F453 1.0.0.3 - Buffer Overflow
A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromAddressNat of the file /goform/addressNat of the component httpd. Executing a manipulation of the argument entrys can lead to buffer overflow. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks.
CVSS 8.8