537 matches found
EUVD-2021-8269
Malicious code in bioql PyPI...
EUVD-2024-19411
Malicious code in bioql PyPI...
EUVD-2023-41453
Malicious code in bioql PyPI...
EUVD-2021-8262
Malicious code in bioql PyPI...
EUVD-2021-8261
Malicious code in bioql PyPI...
Multiple vulnerabilities in ELECOM wireless LAN routers
Overview Multiple wireless LAN routers provided by ELECOM CO.,LTD. contain multiple vulnerabilities listed below. Hidden functionality CWE-912 - CVE-2025-46267 OS command injection in WebGUI CWE-78 - CVE-2025-53472 Chuya Hayakawa of 00One, Inc. reported this vulnerability to JPCERT/CC. JPCERT/CC...
ELECOM WRC-BE36QS-B和ELECOM WRC-W701-B 操作系统命令注入漏洞
The ELECOM WRC-BE36QS-B and ELECOM WRC-W701-B are both wireless routers from ELECOM Japan. The ELECOM WRC-BE36QS-B and ELECOM WRC-W701-B suffer from an operating system command injection vulnerability that originates from OS command injection in the WebGUI, which could lead to the execution of...
ELECOM WRC-BE36QS-B和ELECOM WRC-W701-B 安全漏洞
The ELECOM WRC-BE36QS-B and ELECOM WRC-W701-B are both wireless routers from ELECOM Japan. A security vulnerability exists in the ELECOM WRC-BE36QS-B and ELECOM WRC-W701-B, which stems from the possibility that a remote attacker may be able to enable the product's hidden debugging feature...
Elecom WRC-2533GST2和Elecom WRC-1167GST2 代码问题漏洞
The Elecom WRC-2533GST2 and Elecom WRC-1167GST2 are both routers from Elecom Japan. A code issue vulnerability exists in the Elecom WRC-2533GST2 and Elecom WRC-1167GST2, which stems from insufficient upload limitations for dangerous types of files, and could lead to arbitrary code execution...
Elecom WRH-733GBK和Elecom WRH-733GWH 操作系统命令注入漏洞
The Elecom WRH-733GBK and Elecom WRH-733GWH are both portable routers from Elecom Japan. The Elecom WRH-733GBK and Elecom WRH-733GWH suffer from an operating system command injection vulnerability that stems from telnet function command injection leading to arbitrary OS command execution...
Elecom WRC-1167GHBK2-S 跨站脚本漏洞
The Elecom WRC-1167GHBK2-S is a router from Elecom Japan. The Elecom WRC-1167GHBK2-S suffers from a cross-site scripting vulnerability that stems from susceptibility to stored cross-site scripting attacks...
Elecom多款产品 操作系统命令注入漏洞
Elecom WRC-X3000GS and others are a router from Elecom Japan. An operating system command injection vulnerability exists in the Elecom WRC-X3000GS, Elecom WRC-X3000GSA, and Elecom WRC-X3000GSN, which stems from a Connection Diagnostics page command injection leading to arbitrary OS command...
Elecom WRH-733GBK和Elecom WRH-733GWH 操作系统命令注入漏洞
The Elecom WRH-733GBK and Elecom WRH-733GWH are both portable routers from Elecom Japan. The Elecom WRH-733GBK and Elecom WRH-733GWH suffer from an operating system command injection vulnerability that stems from improper neutralization of special elements in the miniigd SOAP service, which could...
CVE-2024-42412
Cross-site scripting vulnerability exists in ELECOM wireless access points due to improper processing of input values in menu.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web browser...
CVE-2024-25568
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent unauthenticated attacker to execute arbitrary OS commands by sending a specially crafted request to the product. Affected products and versions are as follows: WRC-X3200GST3-B v1.25 and earlier, WRC-G01-W...
CVE-2024-25579
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by sending a specially crafted request to the product. Note that WMC-X1800GST-B is also included in e-Mesh Starter Kit "WMC-2LX-B"...
CVE-2024-23910
Cross-site request forgery CSRF vulnerability in ELECOM wireless LAN routers and wireless LAN repeater allows a remote unauthenticated attacker to hijack the authentication of administrators and to perform unintended operations to the affected product. Note that WMC-X1800GST-B and WSC-X1800GS-B a...
CVE-2024-26258
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent attacker with credentials to execute arbitrary OS commands by sending a specially crafted request to the product...
CVE-2024-22372
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent attacker with an administrative privilege to execute arbitrary OS commands by sending a specially crafted request to the product...
CVE-2024-40883
Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious page while logging in to the affected product with an administrative privilege, the user may be directed to perform unintended operations such as changing the login ID, login password, etc...