143 matches found
Stack overflow
UNSUPPORTED WHEN ASSIGNED TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the newpass parameter at /formPasswordSetup. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This...
PT-2023-19401 · Trendnet · Trendnet Wireless Ac Easy-Upgrader Tew-820Ap
Name of the Vulnerable Software and Affected Versions: TrendNet Wireless AC Easy-Upgrader TEW-820AP version 1.0R, firmware version 1.01.B01 Description: A stack overflow issue was discovered via the submit-url parameter at the "/formSysLog" API endpoint. This issue allows attackers to execute...
PT-2022-27200 · Trendnet · Trendnet Wireless Ac Easy-Upgrader Tew-820Ap
Name of the Vulnerable Software and Affected Versions: TrendNet Wireless AC Easy-Upgrader TEW-820AP version v1.0R, firmware version 1.01.B01 Description: A stack overflow issue exists in the TrendNet Wireless AC Easy-Upgrader TEW-820AP, which may result in remote code execution. Recommendations:...
D-Link AC1200 安全漏洞
The D-Link AC1200 is a router from China-based AUO D-Link. A security vulnerability exists in the D-Link Wireless AC1200 Dual Band VDSL ADSL Modem Router DSL-3782 firmware version v1.01, which originates from a denial of service that can be exploited by an unauthenticated attacker via a crafted...
Elitecms SQL Injection Vulnerability (CNVD-2022-57762)
Elitecms is a web content management from elitecms India. elitecms version 1.01 has a SQL injection vulnerability, which originates from /admin/editpage.php?page= page lack of validation of external input SQL statements, an attacker can use the vulnerability to execute illegal SQL commands to ste...
Elitecms SQL Injection Vulnerability (CNVD-2022-57764)
Elitecms is a web content management by elitecms India. elitecms version 1.01 has a SQL injection vulnerability, which originates from the /admin/editsidebar.php page page parameter lack of validation of external input SQL statements, an attacker can use this vulnerability to execute illegal SQL...
Elitecms SQL Injection Vulnerability (CNVD-2022-57759)
Elitecms is a Web content management from elitecms India. elitecms version 1.01 has a SQL injection vulnerability that originates from the lack of validation of external input SQL statements on the /admin/addpost.php page, which can be exploited by attackers to execute illegal SQL commands to ste...
Elitecms arbitrary file deletion vulnerability
Elitecms is a web content management from elitecms India. elitecms version 1.01 has an arbitrary file deletion vulnerability that can be exploited by attackers to delete any file...
CVE-2022-30816
elitecms 1.01 is vulnerable to SQL Injection via /admin/editsidebar.php...
CVE-2022-30816
elitecms 1.01 is vulnerable to SQL Injection via /admin/editsidebar.php...
CVE-2022-30815
elitecms 1.01 is vulnerable to SQL Injection via admin/editsidebar.php?page=2&sidebar=...
CVE-2022-30814
elitecms v1.01 is vulnerable to SQL Injection via /admin/addsidebar.php...
CVE-2022-30810
elitecms v1.01 is vulnerable to SQL Injection via admin/editpost.php...
CVE-2022-30809
elitecms 1.01 is vulnerable to SQL Injection via /admin/editpage.php?page=...
elitecms SQL注入漏洞
Elitecms is a web content management by elitecms India. elitecms version 1.01 has a SQL injection vulnerability, which originates from the /admin/editsidebar.php page page parameter lack of validation of external input SQL statements, an attacker can use this vulnerability to execute illegal SQL...
elitecms SQL注入漏洞
Elitecms is a Web content management from elitecms India. elitecms version 1.01 has a SQL injection vulnerability that originates from the /admin/addsidebar.php page's lack of validation of external input SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal...
elitecms SQL注入漏洞
Elitecms is a web content management from elitecms India. elitecms version 1.01 is vulnerable to SQL injection, which originates from admin/editsidebar.php?page=2 & sidebar The page sidebar parameter lacks validation for external input SQL statements, and an attacker could exploit the vulnerabili...
elitecms 代码问题漏洞
Elitecms is a web content management from elitecms India. elitecms 1.01 has an arbitrary code execution vulnerability that can be exploited by attackers to execute arbitrary code attacks via admin/manageuploads.php...
DLINK DAP-1620 A1 v1.01 - Directory Traversal
Exploit Title: DLINK DAP-1620 A1 v1.01 - Directory Traversal Date: 27/4/2022 Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: https://me.dlink.com/consumer Version: DAP-1620 - A1 v1.01 Tested on: Linux CVE : CVE-2021-46381 POST /apply.cgi HTTP/1.1 Content-Type:...
Databasir 代码问题漏洞
Databasir is a team-oriented relational database model document management platform. A security vulnerability exists in Databasir 1.01. The vulnerability stems from the fact that during the JDBC driver download validation process, the corresponding JDBC driver download address is downloaded first...