CVE-2025-7758 – TOTOLINK T6 HTTP POST Request Handler Buffer Overflow

July 17, 2025

CVE ID : CVE-2025-7758

Published : July 17, 2025, 10:15 p.m. | 4 hours, 14 minutes ago

Description : A vulnerability, which was classified as critical, has been found in TOTOLINK T6 up to 4.1.5cu.748_B20211015. Affected by this issue is the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7397 – Brocade ASCG CLI Command History Information Disclosure

Next Article CVE-2025-7762 – D-Link DI-8100 HTTP Request Handler Stack-Based Buffer Overflow

Highlights

CVE-2025-4828 – WordPress Support Board Plugin Arbitrary File Deletion Vulnerability

July 9, 2025

CVE ID : CVE-2025-4828

Published : July 9, 2025, 12:15 a.m. | 6 hours, 9 minutes ago

Description : The Support Board plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the sb_file_delete function in all versions up to, and including, 3.8.0. This makes it possible for attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). An attacker can leverage CVE-2025-4855 vulnerability to exploit this vulnerability unauthenticated.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Look out, Meta Ray-Bans! These AI glasses just raised over $1M in pre-orders in 3 days

Samsung ‘Galaxy Glasses’ powered by Android XR are reportedly on track to be unveiled this month

The M4 iPad Pro is discounted $100 as a last-minute Labor Day deal

Distribution Release: Linux From Scratch 12.4

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

August report 2025

Fake News Detection using Python Machine Learning (ML)

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Download Transcribe! for Windows

Microsoft Fixes CertificateServicesClient (CertEnroll) Error in Windows 11

CVE-2025-7758 – TOTOLINK T6 HTTP POST Request Handler Buffer Overflow

Hacker suspected of trying to cheat his way into university is arrested in Spain

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

CVE-2025-32975 – Quest KACE SMA Authentication Bypass

Your Android phone is getting a new security secret weapon – how it works

CVE-2025-52933 – Apache Struts XML External Entity (XXE) Injection

New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors

CVE-2025-4828 – WordPress Support Board Plugin Arbitrary File Deletion Vulnerability

CVE-2025-5539 – WordPress WP Easy Contact Stored Cross-Site Scripting

Memoized Cache Driver in Laravel 12.9

CVE-2024-48905 – Sematell ReplyOne Authentication Bypass

CVE-2025-7758 – TOTOLINK T6 HTTP POST Request Handler Buffer Overflow

Related Posts