z1r00

59 exploits Active since Aug 2022
CVE-2022-45505 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand.
CVSS 7.5
CVE-2022-45506 WRITEUP CRITICAL WORKING POC
Tenda W30e Firmware - OS Command Injection
Tenda W30E v1.0.1.25(633) was discovered to contain a command injection vulnerability via the fileNameMit parameter at /goform/delFileName.
CVSS 9.8
CVE-2022-45507 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the editNameMit parameter at /goform/editFileName.
CVSS 7.5
CVE-2022-45508 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the new_account parameter at /goform/editUserName.
CVSS 7.5
CVE-2022-45509 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the account parameter at /goform/addUserName.
CVSS 7.5
CVE-2022-45510 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the mit_ssid_index parameter at /goform/AdvSetWrlsafeset.
CVSS 7.5
CVE-2022-45512 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SafeEmailFilter.
CVSS 7.5
CVE-2022-45513 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/P2pListFilter.
CVSS 7.5
CVE-2022-45514 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/webExcptypemanFilter.
CVSS 7.5
CVE-2022-45515 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the entries parameter at /goform/addressNat.
CVSS 7.5
CVE-2022-45516 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/NatStaticSetting.
CVSS 7.5
CVE-2022-45517 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/VirtualSer.
CVSS 7.5
CVE-2022-45518 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SetIpBind.
CVSS 7.5
CVE-2022-45519 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the Go parameter at /goform/SafeMacFilter.
CVSS 7.5
CVE-2022-45520 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/qossetting.
CVSS 7.5
CVE-2022-45521 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SafeUrlFilter.
CVSS 7.5
CVE-2022-45522 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SafeClientFilter.
CVSS 7.5
CVE-2022-45523 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/L7Im.
CVSS 7.5
CVE-2022-45524 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the opttype parameter at /goform/IPSECsave.
CVSS 7.5
CVE-2022-45525 WRITEUP HIGH WORKING POC
Tenda W30e Firmware - Out-of-Bounds Write
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the downaction parameter at /goform/CertListInfo.
CVSS 7.5
CVE-2023-29569 WRITEUP MEDIUM WRITEUP
Cesanta Mjs - NULL Pointer Dereference
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ffi_cb_impl_wpwwwww at src/mjs_ffi.c. This vulnerability can lead to a Denial of Service (DoS).
CVSS 5.5
CVE-2023-29570 WRITEUP MEDIUM WRITEUP
Cesanta Mjs - Resource Allocation Without Limits
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_ffi_cb_free at src/mjs_ffi.c. This vulnerability can lead to a Denial of Service (DoS).
CVSS 5.5
CVE-2023-29571 WRITEUP MEDIUM WRITEUP
Cesanta Mjs - Memory Corruption
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via gc_sweep at src/mjs_gc.c. This vulnerability can lead to a Denial of Service (DoS).
CVSS 5.5
CVE-2023-29573 WRITEUP MEDIUM WRITEUP
Axiosys Bento4 - Resource Allocation Without Limits
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp4info component.
CVSS 5.5
CVE-2023-29574 WRITEUP MEDIUM WRITEUP
Axiosys Bento4 - Memory Corruption
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp42avc component.
CVSS 5.5