vuln-report

Vulnerability Research Repository

Welcome to the vulnerability research repository. This collection contains detailed security vulnerability reports for various network devices and embedded systems.

Purpose

This repository serves as a central hub for documenting and disclosing security vulnerabilities discovered during security research activities. Each vulnerability report includes:

• Detailed vulnerability information
• Affected products and firmware versions
• Technical analysis and proof of concept (POC)
• Vendor information and references

Vulnerability List

UTT (艾泰)

• HiPER 810G - Buffer Overflow Vulnerability
  • Severity: Critical
  • Type: Buffer Overflow in /goform/ConfigExceptAli
  • Affected Version: <=v3v1.7.7-171114
  • Impact: Remote code execution, denial of service

Jinher (金和)

• Jinhe OA C6 - SQL Injection Vulnerability
  • Severity: Critical
  • Type: SQL Injection in /C6/Jhsoft.Web.officesupply/OfficeSupplyTypeRight.aspx
  • Affected Version: C6
  • Impact: Sensitive data leakage

Tenda (腾达)

• FH451 - Buffer Overflow Vulnerability
  • Severity: Critical
  • Type: Buffer Overflow in /goform/GstDhcpSetSer
  • Affected Version: V1.0.0.9
  • Impact: Denial of service, remote code execution

Responsible Disclosure

All vulnerabilities documented in this repository follow responsible disclosure practices. Vendors are notified prior to public disclosure to allow sufficient time for patches and updates.

Researcher

Report by: smitug01

Contributing

If you discover a vulnerability or have additional information about the reported issues, please follow responsible disclosure guidelines.

---

Last updated: February 2026