CVE-2026-12810 | Edimax BR-6478AC V2 1.23 POST Request /goform/mp command command injection

Inserito da Angelo Barbosa | Giu 21, 2026 | CVE

A vulnerability was found in Edimax BR-6478AC V2 1.23. It has been rated as critical. Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulation of the argument command results in command injection.

This vulnerability was named CVE-2026-12810. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-12810 | Edimax BR-6478AC V2 1.23 POST Request /goform/mp command command injection

Post correlati

CVE-2023-52031 | Totolink A3700R 9.1.2u.5822_B20200513 UploadFirmwareFile Privilege Escalation

CVE-2024-49282 | dFactory Responsive Lightbox Plugin up to 2.4.8 on WordPress cross site scripting

CVE-2024-2907 | AGCA Plugin up to 7.2.1 on WordPress Setting cross site scripting

CVE-2024-44449 | Quorum onQ OS 6.0.0.5.2064 Login msg cross site scripting