8 matches found
CVE-2018-19168
Shell Metacharacter Injection in www/modules/save.php in FruityWifi aka PatatasFritas/PatataWifi through 2.4 allows remote attackers to execute arbitrary code with root privileges via a crafted modname parameter in a POST request. NOTE: unlike in CVE-2018-17317, the attacker does not need a valid...
CVE-2019-19168
Dext5.ocx ActiveX 5.0.0.116 and eariler versions contain a vulnerability, which could allow remote attacker to download and execute remote arbitrary file by setting the arguments to the activex method. This can be leveraged for code execution...
CVE-2019-19168
creationtimestamp| type| source ---|---|--- 2020-05-06 16:59:21+00:00| seen| https://t.me/cibsecurity/11869...
CVE-2019-19168
CVE-2019-19168 affects Dext5.ocx ActiveX (version 5.0.0.116 and earlier). The vulnerability allows a remote attacker to download and execute an arbitrary file by setting arguments to the ActiveX method, enabling code execution. Connected sources (Red Hat, CNVD/CVE records, CVE details) corroborat...
CVE-2018-19168
Shell Metacharacter Injection in www/modules/save.php in FruityWifi aka PatatasFritas/PatataWifi through 2.4 allows remote attackers to execute arbitrary code with root privileges via a crafted modname parameter in a POST request. NOTE: unlike in CVE-2018-17317, the attacker does not need a valid...
CVE-2018-19168
Shell Metacharacter Injection in www/modules/save.php in FruityWifi aka PatatasFritas/PatataWifi through 2.4 allows remote attackers to execute arbitrary code with root privileges via a crafted modname parameter in a POST request. NOTE: unlike in CVE-2018-17317, the attacker does not need a valid...
CVE-2018-19168
FruityWifi (PatatasFritas/PatataWifi)
CVE-2018-19168
Shell Metacharacter Injection in www/modules/save.php in FruityWifi aka PatatasFritas/PatataWifi through 2.4 allows remote attackers to execute arbitrary code with root privileges via a crafted modname parameter in a POST request. NOTE: unlike in CVE-2018-17317, the attacker does not need a valid...