Shorabh Karir

2 exploits Active since Feb 2026
CVE-2026-24789 WRITEUP CRITICAL WRITEUP
ZLAN5143D - Unauthenticated Password Change via Unprotected API Endpoint
An unprotected API endpoint allows an attacker to remotely change the device password without providing authentication.
CVSS 9.8
CVE-2026-25084 WRITEUP CRITICAL WRITEUP
ZLAN5143D >=v1.600 - Unauthenticated Critical Function Access via Direct URL Access
Authentication for ZLAN5143D can be bypassed by directly accessing internal URLs.
CVSS 9.8