Writeup Exploits

62,260 exploits tracked across all sources.

Sort: Activity Stars
CVE-2026-36794 WRITEUP HIGH
Tenda W3 v1.0.0.3(2204) - Multiple Stack Overflow via R7WebsSecurityHandler
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain multiple stack overflows in the R7WebsSecurityHandler function via the username and password parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36796 WRITEUP HIGH
Tenda G0 15.11.0.5 - Denial of Service via picCropName Parameter Stack Overflow
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a stack overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36797 WRITEUP HIGH
Tenda G0 v15.11.0.5 - Denial of Service via IPMacBindRuleIp Parameter Overflow
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a stack overflow in the IPMacBindRuleIp parameter of the formIPMacBindModify function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36798 WRITEUP MEDIUM
Tenda G0 15.11.0.5 - Stack Overflow via formSetDebugCfgr Parameters
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain multiple stack overflows in the formSetDebugCfgr function via the enable, level, and module parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 6.5
CVE-2026-36799 WRITEUP HIGH
Tenda G0 v15.11.0.5 - Denial of Service via PortalAuth Parameter Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow in the portalAuth parameter of the formPortalAuth function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36800 WRITEUP HIGH
Tenda G0 v15.11.0.5 - Buffer Overflow in formIPMacBindDel IPMacBindIndex Parameter
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow in the IPMacBindIndex parameter of the formIPMacBindDel function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36801 WRITEUP HIGH
Tenda G0 15.11.0.5 - Denial of Service via IPMacBindRule Parameter Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow in the IPMacBindRule parameter of the formIPMacBindAdd function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36802 WRITEUP HIGH
Tenda PW201A v1.0.5 - Denial of Service via SafeMacFilter Page Parameter Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow in the page parameter of the SafeMacFilter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36803 WRITEUP HIGH
Tenda PW201A v1.0.5 - Buffer Overflow in qossetting Page Parameter
Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow in the page parameter of the qossetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36805 WRITEUP HIGH
Tenda G0 v15.11.0.5 - Multiple Buffer Overflow via Saveqqlist Function
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain multiple buffer overflows in the Saveqqlist function via the qqStr and markStr parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36806 WRITEUP HIGH
Tenda W15E v15.11.0.10 - Denial of Service via webAuthUserPwd Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserPwd parameter of the formModifyWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36807 WRITEUP HIGH
Tenda W15E 15.11.0.10 - Denial of Service via formAddWebAuthUser webAuthUserPwd Parameter Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserPwd parameter of the formAddWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36808 WRITEUP HIGH
Tenda W15E v15.11.0.10 - Denial of Service via webAuthUserInfo Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserInfo parameter of the formAddWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36809 WRITEUP HIGH
Tenda W15E 15.11.0.10 - Denial of Service via webAuthWhiteID Parameter Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthWhiteID parameter of the formModifyWebAuthWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36810 WRITEUP HIGH
Tenda W15E 15.11.0.10 - Denial of Service via Buffer Overflow in formPortalAuth gotoUrl Parameter
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the gotoUrl parameter of the formPortalAuth function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36811 WRITEUP HIGH
Tenda W15E 15.11.0.10 - Denial of Service via formDelwebAuthPic picName Parameter Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the picName parameter of the formDelwebAuthPic function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36813 WRITEUP HIGH
Tenda W15E 15.11.0.10 - Denial of Service via picCropName Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36815 WRITEUP HIGH
Tenda W15E 15.11.0.10 - Denial of Service via Hostname Parameter Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the hostname parameter of the formSetNetCheckTools function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36816 WRITEUP HIGH
Tenda W15E v15.11.0.10 - Buffer Overflow in wewifiWhiteUserInfo Parameter
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36817 WRITEUP HIGH
Tenda W15E 15.11.0.10 - Buffer Overflow in formAddWebAuthWhiteUser
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthWhiteUserInfo parameter of the formAddWebAuthWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36818 WRITEUP HIGH
Tenda W20E 15.11.0.6 - Denial of Service via wewifiWhiteUserInfo Buffer Overflow
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36819 WRITEUP HIGH
Tenda W20E 15.11.0.6 - Stack-based Buffer Overflow in fromSetDhcpRules via bindMACAddr Parameter
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the bindMACAddr parameter of the fromSetDhcpRules function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36820 WRITEUP HIGH
Tenda W20E 15.11.0.6 - Stack-based Buffer Overflow in formAddWebAuthWhiteUser
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the webAuthWhiteUserInfo parameter of the formAddWebAuthWhiteUser function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36821 WRITEUP HIGH
Tenda W20E 15.11.0.6 - Stack-based Buffer Overflow in formCropAndSetWewifiPic
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
CVE-2026-36822 WRITEUP HIGH
Tenda W20E 15.11.0.6 - Stack-based Buffer Overflow in formDelStaState macAddr Parameter
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the macAddr parameter of the formDelStaState function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
CVSS 7.5
By Source
All 62,260 Writeup 62,260 Exploitdb 50,076 Nomisec 22,408 Github 3,623 Metasploit 3,312 Vulncheck_xdb 927 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,570 ruby 6,003 c 3,626 perl 2,849 html 2,075 php 1,333 bash 462 java 371 c++ 261 javascript 229 shell 131 go 73 postscript 25 typescript 25