CVE-2026-10166 – Edimax BR-6478AC POST Request formWlbasic command injection

CVE ID :CVE-2026-10166

Published : May 31, 2026, 4:16 a.m. | 16 minutes ago

Description :A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-10169 – OUSL-GROUP-BrinaryBrains School Student Management System Forgot Password Endpoint Login.php ajax_forgot_password password recovery

CVE-2026-10168 – OUSL-GROUP-BrinaryBrains School Student Management System Parents.php marks resource injection

CVE-2026-10167 – OUSL-GROUP-BrinaryBrains School Student Management System MY_Controller Login.php sign_auth_cookie improper authentication

CVE-2026-8382 – Advanced Custom Fields (ACF®)