61 matches found
EUVD-2023-46789
Malicious code in bioql PyPI...
CVE-2024-22729
NETIS SYSTEMS MW5360 V1.0.1.3031 was discovered to contain a command injection vulnerability via the password parameter on the login page...
CVE-2024-33791
A cross-site scripting XSS vulnerability in netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the getTimeZone function...
CVE-2024-33793
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...
CVE-2024-33792
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the tracert page...
CVE-2023-44860
An issue in NETIS SYSTEMS N3Mv2 v.1.0.1.865 allows a remote attacker to cause a denial of service via the authorization component in the HTTP request...
CVE-2023-38829
An issue in NETIS SYSTEMS WF2409E v.3.6.42541 allows a remote attacker to execute arbitrary code via the ping and traceroute functions of the diagnostic tools component in the admin management interface...
CVE-2023-42336
An issue in NETIS SYSTEMS WF2409Ev4 v.1.0.1.705 allows a remote attacker to execute arbitrary code and obtain sensitive information via the password parameter in the /etc/shadow.sample component...
Netis Systems WF-2404 安全漏洞
The Netis Systems WF-2404 is a wireless router from Netis Systems. A security vulnerability exists in the Netis Systems WF-2404 version 1.1.124EN, which stems from the explicit storage of sensitive information that requires physical device access...
Netis Systems WF-2404 安全漏洞
The Netis Systems WF-2404 is a wireless router from Netis Systems. A security vulnerability exists in the Netis Systems WF-2404 version 1.1.124EN, which stems from weak hash usage and requires physical device access...
Netis Systems多款产品 安全漏洞
Netis Systems NX10 and others are a wireless dual-band gigabit router from Netis Systems. A security vulnerability exists in various Netis Systems products. An attacker can exploit the vulnerability to obtain sensitive information through the endpoint /cgi-bin/skkset.cgi and the binary file...
CVE-2024-33792
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the tracert page...
CVE-2024-33793
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...
CVE-2024-33791
A cross-site scripting XSS vulnerability in netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the getTimeZone function...
CVE-2024-33793
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...
CVE-2024-33791
A cross-site scripting XSS vulnerability in netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the getTimeZone function...
NETIS SYSTEMS MEX605 安全漏洞
The NETIS SYSTEMS MEX605 is a wireless device from NETIS SYSTEMS, Inc. A security vulnerability exists in the NETIS SYSTEMS MEX605 version v2.00.06, which stems from the presence of a cross-site scripting XSS vulnerability that could allow an attacker to execute arbitrary web script or HTML...
CVE-2024-33791
A cross-site scripting XSS vulnerability in netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the getTimeZone function...
NETIS SYSTEMS MEX605 安全漏洞
NETIS SYSTEMS MEX605 is a wireless device from NETIS SYSTEMS, Inc. A security vulnerability exists in the NETIS SYSTEMS MEX605 version v2.00.06, which stems from the presence of a cross-site scripting XSS vulnerability that allows an attacker to execute arbitrary web script or HTML by injecting a...
CVE-2024-33792
CVE-2024-33792 affects netis-systems MEX605 v2.00.06. A crafted payload to the tracert page allows an attacker to execute arbitrary OS commands (also described as an XSS vulnerability in some sources). The root cause centers on input handling on the tracert page leading to command execution/scrip...