regainer27

12 exploits Active since Mar 2025
CVE-2025-25579 WRITEUP CRITICAL WRITEUP
Totolink A3002r Firmware - OS Command Injection
TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Command Injection in /bin/boa via bandstr.
CVSS 9.8
CVE-2025-28142 WRITEUP MEDIUM WORKING POC
Edimax Br-6478ac V3 Firmware - Command Injection
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a command injection vulnerability via the foldername in /boafrm/formDiskCreateShare.
CVSS 6.5
CVE-2025-28143 WRITEUP MEDIUM WORKING POC
Edimax Br-6478ac V3 Firmware - Command Injection
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a command injection vulnerability via the groupname at the /boafrm/formDiskCreateGroup.
CVSS 6.5
CVE-2025-28144 WRITEUP MEDIUM WORKING POC
Edimax Br-6478ac V3 Firmware - Stack Buffer Overflow
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a stack overflow vlunerability via peerPin parameter in the formWsc function.
CVSS 6.5
CVE-2025-28145 WRITEUP MEDIUM WORKING POC
Edimax Br-6478ac V3 Firmware - Command Injection
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a command injection vulnerability via partition in /boafrm/formDiskFormat.
CVSS 6.5
CVE-2025-28146 WRITEUP CRITICAL WORKING POC
Edimax Br-6478ac V3 Firmware - Code Injection
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a command injection vulnerability via fota_url in /boafrm/formLtefotaUpgradeQuectel
CVSS 9.8
CVE-2025-45842 WRITEUP HIGH WRITEUP
Totolink Nr1800x Firmware - Out-of-Bounds Write
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid5g parameter in the setWiFiEasyCfg function.
CVSS 8.8
CVE-2025-45843 WRITEUP HIGH WRITEUP
Totolink Nr1800x Firmware - Out-of-Bounds Write
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiGuestCfg function.
CVSS 8.8
CVE-2025-45844 WRITEUP HIGH WRITEUP
Totolink Nr1800x Firmware - Out-of-Bounds Write
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiBasicCfg function.
CVSS 8.8
CVE-2025-45845 WRITEUP HIGH WRITEUP
Totolink Nr1800x Firmware - Out-of-Bounds Write
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid5g parameter in the setWiFiEasyGuestCfg function.
CVSS 8.8
CVE-2025-45846 WRITEUP HIGH WRITEUP
Alfa Aip-w512 Firmware - Stack Buffer Overflow
ALFA AIP-W512 v3.2.2.2.3 was discovered to contain an authenticated stack overflow via the torrentsindex parameter in the formBTClinetSetting function.
CVSS 8.8
CVE-2025-45847 WRITEUP MEDIUM WRITEUP
Alfa Aip-w512 Firmware - Stack Buffer Overflow
ALFA AIP-W512 v3.2.2.2.3 was discovered to contain an authenticated stack overflow via the targetAPMac parameter in the formWsc function.
CVSS 6.5