CVE-2025-5672 – TOTOLINK N302R Plus HTTP POST Request Handler Buffer Overflow Vulnerability

June 5, 2025

CVE ID : CVE-2025-5672

Published : June 5, 2025, 6:15 p.m. | 29 minutes ago

Description : A vulnerability has been found in TOTOLINK N302R Plus up to 3.4.0-B20201028 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument url leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleSimple Diary is a simple and lightweight app

Next Article CVE-2025-5671 – TOTOLINK N302R Plus HTTP POST Request Handler Buffer Overflow Vulnerability

Highlights

CVE-2025-4530 – Feng Ha Ha Megagao SSM-ERP/Production SSM Path Traversal Vulnerability

May 11, 2025

CVE ID : CVE-2025-4530

Published : May 11, 2025, 5:15 a.m. | 1 hour, 23 minutes ago

Description : A vulnerability was found in feng_ha_ha/megagao ssm-erp and production_ssm 1.0. It has been declared as problematic. Affected by this vulnerability is the function handleFileDownload of the file FileController.java of the component File Handler. The manipulation leads to path traversal. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. This product is distributed under two entirely different names.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

AI is currently in its teenage years, battling raging hormones

4 ways your organization can adapt and thrive in the age of AI

Google’s new Search tool turns financial info into interactive charts – how to try it

This rugged Android phone has something I’ve never seen on competing models

Anthropic’s new AI models for classified info are already in use by US gov

Handling PostgreSQL Migrations in Node.js

Handling PostgreSQL Migrations in Node.js

How to Add Product Badges in Optimizely Configured Commerce Spire

Salesforce Health Check Assessment Unlocks ROI

Microsoft: Run PS script now if you deleted “inetpub” on Windows 11, Windows 10

Microsoft: Run PS script now if you deleted “inetpub” on Windows 11, Windows 10

Spf Permerror Troubleshooting Guide For Better Email Deliverability Today

Amap – Gather Info in Easy Way

CVE-2025-5672 – TOTOLINK N302R Plus HTTP POST Request Handler Buffer Overflow Vulnerability

Fake Recruiter Emails Target CFOs Using Legit NetBird Tool Across 6 Global Regions

Qualcomm Fixes 3 Zero-Days Used in Targeted Android Attacks via Adreno GPU

IFG Life Modernizes and Unlocks the Power of Data With MongoDB

GuideLLM Released by Neural Magic: A Powerful Tool for Evaluating and Optimizing the Deployment of Large Language Models (LLMs)

Oura Ring users are customizing their wearables with this clever design hack

A portable light system that can digitize everyday objects

CVE-2025-4530 – Feng Ha Ha Megagao SSM-ERP/Production SSM Path Traversal Vulnerability

Perficient Achieves AWS Glue Service Delivery Designation

How to configure Phpunit.xml to use multiple browsers in Phpunit test with selenium webdriver

Pixel 9a details leak – how its specs compare to my Pixel 9 Pro

CVE-2025-5672 – TOTOLINK N302R Plus HTTP POST Request Handler Buffer Overflow Vulnerability

Related Posts