regainer27

12 exploits Active since Mar 2025
CVE-2025-25579 WRITEUP CRITICAL WRITEUP
TOTOLINK A3002R V4.0.0-B20230531.1404 - OS Command Injection via bandstr Parameter
TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Command Injection in /bin/boa via bandstr.
CVSS 9.8
CVE-2025-28142 WRITEUP MEDIUM WORKING POC
Edimax BR-6478AC V3 Firmware 1.0.15 - OS Command Injection via formDiskCreateShare foldername Parameter
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a command injection vulnerability via the foldername in /boafrm/formDiskCreateShare.
CVSS 6.5
CVE-2025-28143 WRITEUP MEDIUM WORKING POC
Edimax BR-6478AC V3 Firmware 1.0.15 - OS Command Injection via Groupname Parameter
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a command injection vulnerability via the groupname at the /boafrm/formDiskCreateGroup.
CVSS 6.5
CVE-2025-28144 WRITEUP MEDIUM WORKING POC
Edimax BR-6478AC V3 Firmware 1.0.15 - Stack-based Buffer Overflow via peerPin Parameter
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a stack overflow vlunerability via peerPin parameter in the formWsc function.
CVSS 6.5
CVE-2025-28145 WRITEUP MEDIUM WORKING POC
Edimax BR-6478AC V3 Firmware 1.0.15 - OS Command Injection via Disk Format Partition Parameter
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a command injection vulnerability via partition in /boafrm/formDiskFormat.
CVSS 6.5
CVE-2025-28146 WRITEUP CRITICAL WORKING POC
Edimax BR-6478AC V3 Firmware 1.0.15 - OS Command Injection via fota_url Parameter
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a command injection vulnerability via fota_url in /boafrm/formLtefotaUpgradeQuectel
CVSS 9.8
CVE-2025-45842 WRITEUP HIGH WRITEUP
TOTOLINK NR1800X V9.1.0u.6681_B20230703 - Authenticated Stack-based Buffer Overflow via ssid5g Parameter
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid5g parameter in the setWiFiEasyCfg function.
CVSS 8.8
CVE-2025-45843 WRITEUP HIGH WRITEUP
TOTOLINK NR1800X V9.1.0u.6681_B20230703 Authenticated Stack Overflow via SSID in setWiFiGuestCfg
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiGuestCfg function.
CVSS 8.8
CVE-2025-45844 WRITEUP HIGH WRITEUP
TOTOLINK NR1800X V9.1.0u.6681_B20230703 - Authenticated Stack-based Buffer Overflow via SSID Parameter
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiBasicCfg function.
CVSS 8.8
CVE-2025-45845 WRITEUP HIGH WRITEUP
TOTOLINK NR1800X V9.1.0u.6681_B20230703 - Authenticated Stack-based Buffer Overflow via ssid5g Parameter
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid5g parameter in the setWiFiEasyGuestCfg function.
CVSS 8.8
CVE-2025-45846 WRITEUP HIGH WRITEUP
ALFA AIP-W512 v3.2.2.2.3 - Authenticated Stack-based Buffer Overflow via torrentsindex Parameter
ALFA AIP-W512 v3.2.2.2.3 was discovered to contain an authenticated stack overflow via the torrentsindex parameter in the formBTClinetSetting function.
CVSS 8.8
CVE-2025-45847 WRITEUP MEDIUM WRITEUP
ALFA AIP-W512 v3.2.2.2.3 - Authenticated Stack-based Buffer Overflow via targetAPMac Parameter
ALFA AIP-W512 v3.2.2.2.3 was discovered to contain an authenticated stack overflow via the targetAPMac parameter in the formWsc function.
CVSS 6.5