41 matches found
CVE-2023-40796
Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call...
EUVD-2017-3113
Malware in sbrugna...
EUVD-2022-50785
Malicious code in bioql PyPI...
EUVD-2022-50784
Malicious code in bioql PyPI...
CVE-2022-48071
Phicomm K2 v22.6.534.263 was discovered to store the root and admin passwords in plaintext...
CVE-2022-48070
Phicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function...
CVE-2019-19117
/usr/lib/lua/luci/controller/admin/autoupgrade.lua on PHICOMM K2PSG1218 V22.5.9.163 devices allows remote authenticated users to execute any command via shell metacharacters in the cgi-bin/luci autoUpTime parameter...
CVE-2017-11495
PHICOMM K2PSG1218 devices V22.5.11.5 and earlier allow unauthenticated remote code execution via a request to an unspecified ASP script; alternatively, the attacker can leverage unauthenticated access to this script to trigger a reboot via an ifType=reboot action...
CVE-2023-40796
Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call...
CVE-2023-40796
Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call...
CVE-2023-40796
Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call...
Command injection
Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call...
PHICOMM K2 命令注入漏洞
The PHICOMM K2 is a wireless router from the Chinese company PHICOMM. A command injection vulnerability exists in PHICOMM k2 version v22.6.529.216, which stems from the presence of a command injection vulnerability...
CVE-2023-40796
Phicomm K2 devices, specifically v22.6.529.216, are affected by a command injection vulnerability in the luci.sys.call function. Root cause: insecure handling in luci.sys.call enables local exploitation with user interaction, potentially leading to remote command execution with high impact. Explo...
CVE-2023-40796
Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call...
CVE-2023-40796
Phicomm k2 v22.6.529.216 was discovered to contain a command injection vulnerability via the function luci.sys.call...
PT-2023-27640 · Phicomm · Phicomm K2
Name of the Vulnerable Software and Affected Versions: Phicomm k2 version 22.6.529.216 Description: The Phicomm k2 router contains a command injection vulnerability via the luci.sys.call function. This issue allows for remote command execution. Recommendations: For Phicomm k2 version 22.6.529.216...
CVE-2022-48070
Phicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade function...
CVE-2022-48071
Phicomm K2 v22.6.534.263 was discovered to store the root and admin passwords in plaintext...
CVE-2022-48071
Phicomm K2 v22.6.534.263 was discovered to store the root and admin passwords in plaintext...