Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 24 |
|---|---|---|---|---|
 | Barco / AWIND OEM Presentation Platform Unauthenticated Remote Command Injection Vulnerability | 3 May 201900:00 | – | zdt |
| Barco WePresent - file_transfer.cgi Command Injection Exploit | 15 Jan 202000:00 | – | zdt |
 | Exploit for Cross-site Scripting in Crestron Am-100_Firmware | 17 Sep 201916:23 | – | githubexploit |
 | CVE-2019-3929 | 30 Apr 201900:00 | – | attackerkb |
 | WePresent file_transfer.cgi Remote Command Execution | 30 Apr 201900:00 | – | nessus |
 | CVE-2019-3929 | 17 Dec 201914:15 | – | circl |
 | Crestron Multiple Products Command Injection Vulnerability | 15 Apr 202200:00 | – | cisa_kev |
 | Barco EOM Presentation platform Remote Code Execution (CVE-2019-3929) | 12 May 201900:00 | – | checkpoint_advisories |
 | CVE-2019-3929 | 30 Apr 201920:21 | – | cvelist |
 | Crestron AM/Barco wePresent WiPG/Extron ShareLink/Teq AV IT/SHARP PN-L703WA/Optoma WPS-Pro/Blackbox HD WPS/InFocus LiteShow - Remote Command Injection | 3 May 201900:00 | – | exploitdb |
10
Node
Node
Node
Node
Node
Node
Node
Node
Node
Node
Node
Node
[
{
"product": "Crestron AirMedia, Barco WePresent, Extron ShareLink, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3, and InFocus LiteShow4.",
"vendor": "Crestron",
"versions": [
{
"status": "affected",
"version": "Crestron AM-100 firmware 1.6.0.2"
},
{
"status": "affected",
"version": "Crestron AM-101 firmware 2.7.0.1"
},
{
"status": "affected",
"version": "Barco wePresent WiPG-1000P firmware 2.3.0.10"
},
{
"status": "affected",
"version": "Barco wePresent WiPG-1600W before firmware 2.4.1.19"
},
{
"status": "affected",
"version": "Extron ShareLink 200/250 firmware 2.0.3.4"
},
{
"status": "affected",
"version": "Teq AV IT WIPS710 firmware 1.1.0.7"
},
{
"status": "affected",
"version": "SHARP PN-L703WA firmware 1.4.2.3"
},
{
"status": "affected",
"version": "Optoma WPS-Pro firmware 1.0.0.5"
},
{
"status": "affected",
"version": "Blackbox HD WPS firmware 1.0.0.5"
},
{
"status": "affected",
"version": "InFocus LiteShow3 firmware 1.0.16"
},
{
"status": "affected",
"version": "and InFocus LiteShow4 2.0.0.7"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| file_transfer | request body | /cgi-bin/file_transfer.cgi | Unauthenticated remote command injection via crafted POST to file_transfer.cgi. | CWE-78, CWE-79 |
| dir | request body | /cgi-bin/file_transfer.cgi | Unauthenticated remote command injection via crafted POST to file_transfer.cgi. | CWE-78, CWE-79 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
03 Nov 2025 18:59Current
9.8High risk
Vulners AI Score9.8
CVSS 3.19.8
CVSS 210
EPSS0.94253
SSVC