Tenda AC10 V15.03.06.23 has a Cross-site scripting(XSS) vulnerability via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a SQL injection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Path traversal vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Code injection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Redirection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Remote code execution(RCE) vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Denial of service(DoS) vulnerability via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Information disclosure vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Authentication bypass vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Directory traversal vulnerabilities via /goform
AC17 Tent acle - CVE-2022-42171
CVE (Common Vulnerabilities and Exposures) is a dictionary of standard identifiers to describe computer security vulnerabilities and exposures. The following is the list of vulnerabilities found in Tenda AC17 Tentacle:
Tenda AC17 Tentacle has a Cross-site scripting(XSS) vulnerability via /goform/saveParentControlInfo.
Tenda AC17 Tentacle has a SQL injection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC17 Tentacle has a Path traversal vulnerabilities via /goform/saveParentControlInfo.
Tenda AC17 Tentacle has a Code injection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC17 Tentacle has a Redirection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC17 Tentacle has a Remote code execution(RCE) vulnerabilities via /goform/saveParentControlInfo. Tenda AC17 Tentacle has a Denial of service(DoS) vulnerability via /goform/saveParentControlInfo. Tenda AC17 Tentacle has an Authentication bypass vulnerabilities via /goform//saveParentControlInfo. Tenda AC17 Tentacle has a Directory traversal vulnerabilities via //goform//saveParentControlInfo
Tenda AC5 V15.03.06.23
Tenda AC5 V15.03.06.23 has a Cross-site scripting(XSS) vulnerability via /goform/saveParentControlInfo.
Tenda AC5 V15.03.06.23 has a SQL injection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC5 V15.03.06.23 has a Path traversal vulnerabilities via /goform/saveParentControlInfo.
Tenda AC5 V15.03.06.23 has a Code injection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC5 V15.03.06.23 has a Redirection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC5 V15.03.06.23 has a Remote code execution(RCE) vulnerabilities via /goform/saveParentControlInfo
Tenda Router AC15 V2.13
Tenda AC10 V15.03.06.23 has a Cross-site scripting(XSS) vulnerability via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a SQL injection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Path traversal vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Code injection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Redirection vulnerabilities via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Remote code execution(RCE) vulnerabilities via /goform/saveParentControlInfo and user privilege escalation vulnerability in the web interface of Tenda Router AC15 v2,v3,v4,V5,V6,V7,V8,V9 and v10; The vulnerability is due to insufficient authentication in the web interface of TENDA products when accessing for remote configuration of devices without an active internet connection; An attacker may be able to access remote configuration pages on the affected product without proper authorization and perform commands such as accessing other customers' data or interfering with the device's operation by using different usernames
AC3 Tent acle
Tenda AC10 V15.03.06.23 has a Path traversal vulnerability via /goform/saveParentControlInfo.
Tenda AC10 V15.03.06.23 has a Cross-site scripting(XSS) vulnerability via /goform/saveParentControlInfo.
Timeline
Published on: 10/17/2022 14:15:00 UTC
Last modified on: 10/19/2022 15:06:00 UTC