CVE-2026-8228 | Wavlink NU516U1 240425 /cgi-bin/wireless.cgi advance wlan_conf/Channel/skiplist/ieee_80211h os command injection

Inserito da Angelo Barbosa | Mag 9, 2026 | CVE

A vulnerability described as critical has been identified in Wavlink NU516U1 240425. Impacted is the function advance of the file /cgi-bin/wireless.cgi. Such manipulation of the argument wlan_conf/Channel/skiplist/ieee_80211h leads to os command injection.

This vulnerability is traded as CVE-2026-8228. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure.

CVE-2026-8228 | Wavlink NU516U1 240425 /cgi-bin/wireless.cgi advance wlan_conf/Channel/skiplist/ieee_80211h os command injection

Post correlati

CVE-2023-6707 | Google Chrome prior 120.0.6099.109 CSS use after free

CVE-2025-8522 | givanz Vvvebjs up to 2.0.4 node.js /save.php File path traversal (Issue 409)

CVE-2024-12953 | 1000 Projects Portfolio Management System MCA 1.0 /update_pd_process.php profile unrestricted upload

CVE-2025-4933 | ponaravindb Hospital-Management-System 1.0 /doctor-panel.php ID sql injection