CVE-2026-10166 | Edimax BR-6478AC 1.23 POST Request /goform/formWlbasic rootAPmac command injection

Inserito da Angelo Barbosa | Mag 30, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection.

This vulnerability is tracked as CVE-2026-10166. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-10166 | Edimax BR-6478AC 1.23 POST Request /goform/formWlbasic rootAPmac command injection

Post correlati

CVE-2025-21649 | Linux Kernel up to 6.12.9/6.13-rc6 hns3 null pointer dereference

CVE-2023-5403 | Honeywell Experion Server stack-based overflow

CVE-2026-30291 | Ora Tools PDF Reader App 4.3.5 access control (ID 18)

CVE-2024-23128 | Autodesk AutoCAD/Advance Steel/Civil 3D MODEL File libodxdll.dll memory corruption