Exploit for OS Command Injection in Zyxel Vmg8623-T50B_Firmware

CVE-2026-1459-POC POC for the CVE-2026-1459 which payload c...

CVE-2017-18371

The ZyXEL P660HN-T1A v2 TCLinux Fw 7.3.37.6 router distributed by TrueOnline has three user accounts with default passwords, including two hardcoded service accounts: one with the username true and password true, and another with the username supervisor and password zyad1234. These accounts can b...

CVE-2017-18368

The ZyXEL P660HN-T1A v1 TCLinux Fw $7.3.15.0 v001 / 3.40ULM.0b31 router distributed by TrueOnline has a command injection vulnerability in the Remote System Log forwarding function, which is accessible by an unauthenticated user. The vulnerability is in the ViewLog.asp page and can be exploited...

CVE-2020-24354

Zyxel VMG5313-B30B router on firmware 5.13ABCJ.6b31127, and possibly older versions of firmware are affected by shell injection...

EUVD-2014-4093

Malware in sbrugna...

EUVD-2020-17088

Malware in sbrugna...

EUVD-2001-1116

Malware in sbrugna...

EUVD-2008-1263

Malware in sbrugna...

EUVD-2008-1265

Malware in sbrugna...

EUVD-2008-1267

Malware in sbrugna...

EUVD-2008-1262

Malware in sbrugna...

EUVD-2008-1269

Malware in sbrugna...

EUVD-2020-17089

Malware in sbrugna...

EUVD-2005-1719

Malware in sbrugna...

EUVD-2014-0394

Malware in sbrugna...

EUVD-2014-0392

Malware in sbrugna...

EUVD-2008-1268

Malware in sbrugna...

EUVD-2017-9490

Malware in sbrugna...

Zyxel Legacy DSL CPE Router Multiple Vulnerabilities

According to its model number, the remote Zyxel router is affected by multiple vulnerabilities, as follows: - A post-authentication command injection vulnerability in the CGI program of the legacy DSL CPE Zyxel VMG4325-B10A firmware version 1.00AAFR.4C020170615 could allow an authenticated attack...

Zyxel Router Command Injection

Firmware version of the Zyxel TCLinux device is affected by command injection vulnerability: - The ZyXEL three router models - ZyXEL P660HN-T1A v1, ZyXEL P660HN-T1A v2 and Billion 5200W-T - router distributed by TrueOnline has a command injection vulnerability in the Remote System Log forwarding...