CVE-2025-5607 – “Tenda AC18 PPTP User List Buffer Overflow Vulnerability”

June 4, 2025

CVE ID : CVE-2025-5607

Published : June 4, 2025, 8:15 p.m. | 1 hour, 29 minutes ago

Description : A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function formSetPPTPUserList of the file /goform/setPptpUserList. The manipulation of the argument list leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5608 – Tenda AC18 Buffer Overflow Vulnerability

Next Article CVE-2025-48935 – Deno SQLite Database Permission Bypass Vulnerability

Highlights

CVE-2025-4127 – “WP SEO Structured Data Schema Stored Cross-Site Scripting Vulnerability”

May 8, 2025

CVE ID : CVE-2025-4127

Published : May 8, 2025, 7:15 a.m. | 58 minutes ago

Description : The WP SEO Structured Data Schema plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Price Range’ parameter in all versions up to, and including, 2.7.11 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts that will execute whenever an administrator accesses the plugin settings page.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

ChatGPT now has an agent mode

Scrum Alliance and Kanban University partner to offer new course that teaches both methodologies

Is ChatGPT down? You’re not alone. Here’s what OpenAI is saying

I found a tablet that could replace my iPad and Kindle – and it’s worth every penny

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

Execute Ping Commands and Get Back Structured Data in PHP

Execute Ping Commands and Get Back Structured Data in PHP

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

Microsoft confirms active cyberattacks on SharePoint servers

How to Manually Check & Install Windows 11 Updates (Best Guide)

CVE-2025-5607 – “Tenda AC18 PPTP User List Buffer Overflow Vulnerability”

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics

Why Google Code Assist may finally be the programming power tool you need

DjVuLibre-lek laat aanvaller code op Linux-desktops uitvoeren

CVE-2025-30012 – SAP SRM Java Applet Deserialization Vulnerability

Anthropic Wins Landmark Case as Judge Rules AI Book Training Is Fair Use

CVE-2025-4127 – “WP SEO Structured Data Schema Stored Cross-Site Scripting Vulnerability”

CVE-2025-2506 – EDB pglogical Replication Connection Verification Bypass

Frostpunk 2 heats up with a free “major content update” that overhauls the survival city builder’s core gameplay

The Turtle Beach Atom is perfect for Xbox Cloud Gaming on Android phones, and it’s on sale right now

CVE-2025-5607 – “Tenda AC18 PPTP User List Buffer Overflow Vulnerability”

Related Posts