CVE-2025-7460 – TOTOLINK T6 HTTP POST Request Handler Buffer Overflow Vulnerability

July 11, 2025

CVE ID : CVE-2025-7460

Published : July 11, 2025, 10:15 p.m. | 2 hours, 52 minutes ago

Description : A vulnerability has been found in TOTOLINK T6 4.1.5cu.748_B20211015 and classified as critical. Affected by this vulnerability is the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5199 – Canonical Multipass Privilege Escalation Vulnerability

Next Article CVE-2025-53636 – Open OnDemand Shell App Log Flood Denial of Service Vulnerability

This week in AI dev tools: Gemini API Batch Mode, Amazon SageMaker AI updates, and more (July 11, 2025)

JFrog finds MCP-related vulnerability, highlighting need for stronger focus on security in MCP ecosystem

8 Key Questions Every CEO Should Ask Before Hiring a Node.js Development Company in 2025

Vibe Loop: AI-native reliability engineering for the real world

One of Atlus’ best Xbox JRPGs that puts modern Final Fantasy games to shame is now on a 45% discount — This is your last chance to seize it as the Amazon Day Prime closes today

Don’t waste the LAST 24 hours of Amazon Prime Day sales buying a MacBook — buy this much better Windows laptop instead!

This fantastic Xbox remake of a classic Atlus JRPG we gave a perfect review score to is now 49% cheaper — Don’t miss the deadline for this Amazon Prime Day deal, which ends today

HP’s discount on one of the most powerful gaming laptops on the planet is absolutely UNBEATABLE — but you only have a few hours to get one!

The details of TC39’s last meeting

The details of TC39’s last meeting

Francisco Bergeret Paves the Way Through Strong Leadership at Perficient

Intelligent Automation in the Healthcare Sector with n8n, OpenAI, and Pinecone

One of Atlus’ best Xbox JRPGs that puts modern Final Fantasy games to shame is now on a 45% discount — This is your last chance to seize it as the Amazon Day Prime closes today

One of Atlus’ best Xbox JRPGs that puts modern Final Fantasy games to shame is now on a 45% discount — This is your last chance to seize it as the Amazon Day Prime closes today

Don’t waste the LAST 24 hours of Amazon Prime Day sales buying a MacBook — buy this much better Windows laptop instead!

This fantastic Xbox remake of a classic Atlus JRPG we gave a perfect review score to is now 49% cheaper — Don’t miss the deadline for this Amazon Prime Day deal, which ends today

CVE-2025-7460 – TOTOLINK T6 HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-7459 – Code-projects Mobile Shop SQL Injection Vulnerability

CVE-2025-7457 – Campcodes Online Movie Theater Seat Reservation System SQL Injection Vulnerability

GPT-4.1 is here, but not for everyone. Here’s who can try the new models

CVE-2025-46193 – SourceCodester Client Database Management System Remote Code Execution Vulnerability

CVE-2025-23260 – NVIDIA AIStore Kubernetes ClusterRole Escalation of Privilege

CVE-2025-6068 – FooGallery WordPress Stored Cross-Site Scripting Vulnerability

Bulma CSS Framework

CVE-2025-49870 – Cozmoslabs Paid Member Subscriptions SQL Injection

CVE-2025-52725 – CouponXxL PEBAS Object Injection Vulnerability

CVE-2025-32470 – Apache HTTP Server DNS Spoofing

CVE-2025-7460 – TOTOLINK T6 HTTP POST Request Handler Buffer Overflow Vulnerability

Related Posts