CVE-2025-9533 | TOTOLINK T10 4.1.8cu.5241_B20210927 /formLoginAuth.htm authCode improper authentication

Inserito da Angelo Barbosa | Ago 27, 2025 | CVE

A vulnerability classified as critical has been found in TOTOLINK T10 4.1.8cu.5241_B20210927. Affected is an unknown function of the file /formLoginAuth.htm. The manipulation of the argument authCode with the input 1 leads to improper authentication.

This vulnerability is documented as CVE-2025-9533. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-9533 | TOTOLINK T10 4.1.8cu.5241_B20210927 /formLoginAuth.htm authCode improper authentication

Post correlati

CVE-2025-27507 | Zitadel up to 2.70.0 authorization

CVE-2025-7565 | LB-LINK BL-AC3600 up to 1.0.22 Web Management Interface /cgi-bin/lighttpd.cgi geteasycfg Password information disclosure

CVE-2024-26984 | Linux Kernel up to 5.15.156/6.1.87/6.6.28/6.8.7/6.9-rc4 nouveau null pointer dereference

CVE-2025-11426 | projectworlds Advanced Library Management System 1.0 /edit_book.php image unrestricted upload