D-Link DIR-823X 操作系统命令注入漏洞

The D-Link DIR-823X is a wireless router produced by D-Link Corporation. The D-Link DIR-823X 250416 version has a vulnerability related to operating system command injection. This vulnerability stems from incorrect handling of parameters in the file/goform/setmacclone, which may lead to command...

PT-2025-52770

Name of the Vulnerable Software and Affected Versions Linksys E5600 version 1.1.0.26 Description The Linksys E5600 router firmware version 1.1.0.26 contains a command injection issue in the runtime.macClone function. The issue is triggered via the mc.ip parameter. Recommendations Update to a newe...

git-interface 操作系统命令注入漏洞

git-interface is an interface for using git repositories in node.js by the Russian individual developer Yarkeev Denis. A security vulnerability exists in yarkeev git-interface versions prior to 2.1.1, which stems from a lack of filtering of the git clone and git --upload-pack command line...

PT-2022-14911 · Libvcs · Libvcs

Name of the Vulnerable Software and Affected Versions: libvcs versions prior to 0.11.1 Description: The issue concerns Command Injection via argument injection. When the update repo function is called, specifically when using hg, the url parameter is passed to the hg clone command. This allows fo...