61 matches found
EUVD-2023-46789
Malicious code in bioql PyPI...
CVE-2024-22729
NETIS SYSTEMS MW5360 V1.0.1.3031 was discovered to contain a command injection vulnerability via the password parameter on the login page...
CVE-2024-33791
A cross-site scripting XSS vulnerability in netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the getTimeZone function...
CVE-2024-33793
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...
CVE-2024-33792
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the tracert page...
CVE-2023-44860
An issue in NETIS SYSTEMS N3Mv2 v.1.0.1.865 allows a remote attacker to cause a denial of service via the authorization component in the HTTP request...
CVE-2023-38829
An issue in NETIS SYSTEMS WF2409E v.3.6.42541 allows a remote attacker to execute arbitrary code via the ping and traceroute functions of the diagnostic tools component in the admin management interface...
CVE-2023-42336
An issue in NETIS SYSTEMS WF2409Ev4 v.1.0.1.705 allows a remote attacker to execute arbitrary code and obtain sensitive information via the password parameter in the /etc/shadow.sample component...
Netis Systems WF-2404 安全漏洞
The Netis Systems WF-2404 is a wireless router from Netis Systems. A security vulnerability exists in the Netis Systems WF-2404 version 1.1.124EN, which stems from the explicit storage of sensitive information that requires physical device access...
Netis Systems WF-2404 安全漏洞
The Netis Systems WF-2404 is a wireless router from Netis Systems. A security vulnerability exists in the Netis Systems WF-2404 version 1.1.124EN, which stems from weak hash usage and requires physical device access...
Netis Systems多款产品 安全漏洞
Netis Systems NX10 and others are a wireless dual-band gigabit router from Netis Systems. A security vulnerability exists in various Netis Systems products. An attacker can exploit the vulnerability to obtain sensitive information through the endpoint /cgi-bin/skkset.cgi and the binary file...
CVE-2024-33793
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...
CVE-2024-33792
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the tracert page...
CVE-2024-33791
A cross-site scripting XSS vulnerability in netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the getTimeZone function...
CVE-2024-33791
A cross-site scripting XSS vulnerability in netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the getTimeZone function...
CVE-2024-33793
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...
CVE-2024-33793
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...
CVE-2024-33793
netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...
NETIS SYSTEMS MEX605 安全漏洞
The NETIS SYSTEMS MEX605 is a wireless device from NETIS SYSTEMS, Inc. A security vulnerability exists in the NETIS SYSTEMS MEX605 version v2.00.06, which stems from the presence of a cross-site scripting XSS vulnerability that could allow an attacker to execute arbitrary web script or HTML...
CVE-2024-33793
CVE-2024-33793 affects netis-systems MEX605 v2.00.06. A crafted payload to the device’s ping test page allows attackers to execute arbitrary OS commands. Documented impact is arbitrary command execution with local attack vector, low privileges, no user interaction. No explicit exploitation detail...