Show threadda_6676d ago

today's bounty:

#internetofshit

da_6676d ago

Repo full of ComFast, Totolink, D-Link, and Netgear PoC exploits.

https://github.com/jinhao118/cve

#internetofshit

GitHub - jinhao118/cve

Contribute to jinhao118/cve development by creating an account on GitHub.

GitHub
da_667Mar 10

D-Link /boafrm/formDateReboot submit-url buffer overflow.

https://www.cve.org/CVERecord?id=CVE-2026-2962

#internetofshit

da_667Mar 10

D-Link /boafrm/formVpnConfigSetup submit-url parameter buffer overflow

https://www.cve.org/CVERecord?id=CVE-2026-2961

#internetofshit

Note: the actual link to the github issue is dead. Irritating, but the vuldb link confirms its the submit-url parameter that's vulnerable.

da_667Mar 10

D-Link SSDP "ST" header command injection. #internetofshit

https://www.cve.org/CVERecord?id=CVE-2026-3485

Note: This vuln is exactly the same as CVE-2025-10629 before it... Just different hardware.

Show threadtasketFeb 28

@xandru Youtube says "Please sign in to prove you're not a bot."

#internetofshit #irony

Show threadwilhelmFeb 25
@verge Is there even a CVE for this shit? The article doesn't mention it 😮‍💨

#InternetOfShit #DJI #DJIRomo
Tanguy ⧓ HerrmannFeb 23

RE: https://mastodon.social/@Viss/116115269791978302

#InternetOfShit #AI #cybersecurity

SpaceLifeFormFeb 22

This was outside of my threat model.

(because I am not dumb enough to have a smart vacuum)

https://www.popsci.com/technology/robot-vacuum-army/

#InternetOfShit

Man accidentally gains control of 7,000 robot vacuums

Sammy Azdoufal just wanted to steer his DJI Romo with a gaming controller.

Popular Science
DouweFeb 22

https://www.popsci.com/technology/robot-vacuum-army/

internet of shit meets genAI

#internetofshit #GenAI

Man accidentally gains control of 7,000 robot vacuums

Sammy Azdoufal just wanted to steer his DJI Romo with a gaming controller.

Popular Science