Submeter #643431: Wavlink WL-WN578W2 M78W2_V221110 Exposure of Sensitive Information Due to Incompatible Policiesinformação

TítuloWavlink WL-WN578W2 M78W2_V221110 Exposure of Sensitive Information Due to Incompatible Policies
DescriçãoAn unauthenticated sensitive information disclosure vulnerability exists in WAVLINK devices WL-WN578W2 when accessing /live_online.shtml. The endpoint lists all connected WiFi devices and leaks their MAC addresses and IP addresses without any authentication, enabling attackers to fully map the network for further targeted attacks.
Fonte⚠️ https://github.com/ZZ2266/.github.io/tree/main/WAVLINK/WL-WN578W2/live_online.shtml
Utilizador
 n0ps1ed (UID 88889)
Submissão28/08/2025 18h19 (há 8 meses)
Moderação12/09/2025 10h22 (15 days later)
EstadoAceite
Entrada VulDB323747 [Wavlink WL-WN578W2 221110 /live_online.shtml Divulgação de Informação]
Pontos19

VoltarVisão GeralPróximo

Do you need the next level of professionalism?

Upgrade your account now!