CVE-2025-6149 – TOTOLINK A3002R HTTP POST Request Handler Buffer Overflow

June 16, 2025

CVE ID : CVE-2025-6149

Published : June 17, 2025, 1:15 a.m. | 25 minutes ago

Description : A vulnerability classified as critical has been found in TOTOLINK A3002R 4.0.0-B20230531.1404. Affected is an unknown function of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6151 – TP-Link TL-WR940N Buffer Overflow Vulnerability

Next Article CVE-2025-6148 – TOTOLINK A3002RU HTTP POST Request Handler Buffer Overflow

Highlights

CVE-2025-4080 – “PHPGurukul Online Nurse Hiring System SQL Injection Vulnerability”

April 29, 2025

CVE ID : CVE-2025-4080

Published : April 29, 2025, 8:15 p.m. | 2 hours, 53 minutes ago

Description : A vulnerability has been found in PHPGurukul Online Nurse Hiring System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/view-request.php. The manipulation of the argument viewid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

Parasoft C/C++test 2025.1, Secure Code Warrior AI Security Rules, and more – Daily News Digest

What I Wish Someone Told Me When I Was Getting Into ARIA

SD Times 100

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

This Xbox game emotionally wrecked me in less than four hours… I’m going to go hug my cat now

Top 5 desktop PC case features that I can’t live without — and neither should you

‘No aggressive monetization’ — Nexus Mods’ new ownership responds to worried members

Build AI Agents That Run Your Day – While You Focus on What Matters

Build AI Agents That Run Your Day – While You Focus on What Matters

Faster Builds in Meteor 3.3: Modern Build Stack with SWC and Bundler Optimizations

How to Change Redirect After Login/Register in Laravel Breeze

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

This Xbox game emotionally wrecked me in less than four hours… I’m going to go hug my cat now

Top 5 desktop PC case features that I can’t live without — and neither should you

CVE-2025-6149 – TOTOLINK A3002R HTTP POST Request Handler Buffer Overflow

The “Infinite Workday” is Here: Microsoft Warns of Never-Ending Work Driven by Hybrid Models & AI

Mastodon Cracks Down: New Terms Ban Unauthorized AI Data Scraping

CVE-2024-11953 – Apache Apache HTTP Server Cross-Site Request Forgery

The Apple Code Signing Handbook

251 Amazon-Hosted IPs Used in Exploit Scan Targeting ColdFusion, Struts, and Elasticsearch

Fast Flux is the New Cyber Weapon—And It’s Hard to Stop, Warns CISA

CVE-2025-4080 – “PHPGurukul Online Nurse Hiring System SQL Injection Vulnerability”

CVE-2025-6145 – TOTOLINK EX1200T HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-5049 – FreeFloat FTP Server Buffer Overflow Vulnerability

CVE-2025-46575 – GoldenDB Information Disclosure Vulnerability

CVE-2025-6149 – TOTOLINK A3002R HTTP POST Request Handler Buffer Overflow

Related Posts