48 matches found
PT-2026-41950
Name of the Vulnerable Software and Affected Versions Panabit PAP-XM320 versions prior to 7.8 Description A command injection issue exists in the CGI component of the software. Authenticated users can execute arbitrary shell commands with root privileges through the '/cgi-bin/tools/ajax cmd'...
PT-2026-41951
Name of the Vulnerable Software and Affected Versions Panabit PAP-XM320 versions prior to 7.8 Description An authentication bypass exists in the embedded HTTP server. The server validates session cookies by performing a filesystem existence check based on a user-controlled cookie value. Due to a...
CVE-2026-36828
CVE-2026-36828 describes a command-injection in Panabit PAP-XM320 up to v7.7. The vulnerable CGI is /cgi-bin/tools/ajax_cmd; when authenticated users supply action=runcmd, they can execute arbitrary shell commands with root privileges. Impact aligns with high-severity, full control over the host ...
EUVD-2024-26984
Malicious code in bioql PyPI...
Command Execution Vulnerability in Panabit Log Audit System of Beijing Paiwang Software Co.
Beijing PaiNet Software Co., Ltd. is a technology company focusing on providing network application layer solutions for the government and enterprise industries. A command execution vulnerability exists in the panabit log auditing system of Beijing Pai Networks Software Co. Ltd, which can be...
CVE-2024-31601
An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...
CVE-2024-2014
A vulnerability classified as critical was found in Panabit Panalog 202103080942. This vulnerability affects unknown code of the file /Maintain/sprogupstatus.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...
CVE-2024-31601
An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...
CVE-2024-31601
CVE-2024-31601 affects Beijing Panabit Network Software Co., Ltd. Panalog big data analysis platform (version 20240323 and earlier). The issue allows attackers to execute arbitrary code via the exportpdf.php component, with a CVSSv3.1 base score of 9.8 (Network, High impact on confidentiality, in...
Panabit Panalog 安全漏洞
Panabit Panalog is a big data log auditing system from Panabit. A security vulnerability exists in Panabit Panalog version 20240323, which stems from an arbitrary code execution vulnerability in the exportpdf.php component...
CVE-2024-31601
An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...
CVE-2024-31601
An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php component...
CVE-2024-2014
A vulnerability classified as critical was found in Panabit Panalog 202103080942. This vulnerability affects unknown code of the file /Maintain/sprogupstatus.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...
CVE-2024-2014
A vulnerability classified as critical was found in Panabit Panalog 202103080942. This vulnerability affects unknown code of the file /Maintain/sprogupstatus.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...
Panabit Panalog SQL注入漏洞
Panabit Panalog is a big data log auditing system from Panabit. A SQL injection vulnerability exists in Panabit Panalog version 202103080942, which stems from the parameter id of the file /Maintain/sprogupstatus.php that can lead to SQL injection...
CVE-2024-2014 Panabit Panalog sprog_upstatus.php sql injection
A vulnerability classified as critical was found in Panabit Panalog 202103080942. This vulnerability affects unknown code of the file /Maintain/sprogupstatus.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...
CVE-2024-2014
CVE-2024-2014 affects Panabit Panalog 202103080942, with a SQL injection in /Maintain/sprog_upstatus.php via the id parameter. Exploitation can be remote and publicly disclosed. A fix is not documented in the provided sources. As a workaround, restrict access to the affected file and avoid using ...
CVE-2024-2014 Panabit Panalog sprog_upstatus.php sql injection
A vulnerability classified as critical was found in Panabit Panalog 202103080942. This vulnerability affects unknown code of the file /Maintain/sprogupstatus.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...
PT-2024-18626 · Panabit · Panabit Panalog
Name of the Vulnerable Software and Affected Versions: Panabit Panalog version 202103080942 Description: A critical vulnerability was found in Panabit Panalog, affecting unknown code of the file /Maintain/sprog upstatus.php. The manipulation of the id argument leads to SQL injection. The attack c...
Command Execution Vulnerability in Panabit Smart Application Gateway
Panabit's Layer 4 to Layer 7 Intelligent Gateways, customized specifically for SMB users, can address a range of real-world needs from network access, multi-line aggregation, application optimization, load balancing, behavioral management, user authentication, WIFI bandwidth protection, log...