CVE-2026-5184 | TRENDnet TEW-713RE up to 1.02 /goform/setSysAdm admuser command injection

Inserito da Angelo Barbosa | Mar 30, 2026 | CVE

A vulnerability identified as critical has been detected in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection.

This vulnerability is documented as CVE-2026-5184. The attack can be initiated remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-5184 | TRENDnet TEW-713RE up to 1.02 /goform/setSysAdm admuser command injection

Post correlati

CVE-2026-2235 | HGiga C&Cm@il package olln-base up to 7.0-977 sql injection

CVE-2022-43855 | IBM SPSS Statistics 26.0/27.0.1/28.0 File resource management (XFDB-239235)

CVE-2026-21386 | Mattermost up to 10.11.10/11.2.2/11.3.0 /mute information exposure

CVE-2025-6234 | GoodLayers Hostel Plugin prior 1.1.5.8 on WordPress cross site scripting