CVE-2025-6824 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

June 28, 2025

CVE ID : CVE-2025-6824

Published : June 28, 2025, 8:15 p.m. | 2 hours, 21 minutes ago

Description : A vulnerability classified as critical has been found in TOTOLINK X15 up to 1.0.0-B20230714.1105. Affected is an unknown function of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6825 – A vulnerability classified as critical was found i

Next Article CVE-2025-6823 – Code-projects Inventory Management System SQL Injection Vulnerability

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

Forget YouTube’s ad blocker war — this Google AI Overviews clone might finally sell me on the $14/month Premium subscription

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

CVE-2025-6824 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

CVE-2025-32897 – Apache Seata (incubating) Untrusted Data Deserialization Vulnerability

CVE-2025-6822 – Code-projects Inventory Management System SQL Injection Vulnerability

This tiny Bluetooth speaker delivers loud, distortion-free sound – and it’s on sale

CVE-2025-4789 – FreeFloat FTP Server LCD Command Handler Critical Remote Buffer Overflow Vulnerability

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

You will always remember this as the day you finally caught FamousSparrow

CVE-2025-4298 – Tenda AC1206 Buffer Overflow Vulnerability

CVE-2025-6288 – PHPGurukul Bus Pass Management System Cross Site Scripting (XSS)

From Accountant to Data Engineer with Alyson La [Podcast #168]

CVE-2025-4883 – D-Link DI-8100 ASP Context Buffer Overflow

CVE-2025-6824 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

Related Posts