luckysmallbird

6 exploits Active since Nov 2024
CVE-2024-53333 WRITEUP MEDIUM WORKING POC
Totolink Ex200 Firmware - Command Injection
TOTOLINK EX200 v4.0.3c.7646_B20201211 was found to contain a command insertion vulnerability in the setUssd function. This vulnerability allows an attacker to execute arbitrary commands via the "ussd" parameter.
CVSS 6.3
CVE-2024-53334 WRITEUP HIGH WRITEUP
Totolink A810r Firmware - Buffer Overflow
TOTOLINK A810R V4.1.2cu.5182_B20201026 is vulnerable to Buffer Overflow in infostat.cgi.
CVSS 8.8
CVE-2024-53335 WRITEUP HIGH WRITEUP
Totolink A810r Firmware - Buffer Overflow
TOTOLINK A810R V4.1.2cu.5182_B20201026 is vulnerable to Buffer Overflow in downloadFlile.cgi.
CVSS 7.8
CVE-2024-57036 WRITEUP HIGH WRITEUP
TOTOLINK A810R V4.1.2cu.5032_B20200407 - Command Injection
TOTOLINK A810R V4.1.2cu.5032_B20200407 was found to contain a command insertion vulnerability in downloadFile.cgi main function. This vulnerability allows an attacker to execute arbitrary commands by sending HTTP request.
CVSS 8.1
CVE-2025-51630 WRITEUP CRITICAL WORKING POC
Totolink N350rt Firmware - Buffer Overflow
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a buffer overflow via the ePort parameter in the function setIpPortFilterRules.
CVSS 9.8
CVE-2025-60554 WRITEUP CRITICAL WRITEUP
D-Link DIR600L Ax - Buffer Overflow
D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime parameter in the function formSetEnableWizard.
CVSS 9.8