QNAP QTS and QNAP QuTS hero command injection vulnerabilities

QNAP QTS is a Linux-based NAS operating system launched by QNAP, providing an intuitive and easy-to-use graphical interface and powerful data management features. QNAP QuTS hero is an operating system launched by QNAP specifically for enterprise-level applications, adopting the ZFS file system,...

The vulnerability of the get_syslog_from_qtn() function in the router_command.sh script of the Quantenna Wi-Fi chip’s software allows a hacker to execute arbitrary commands.

The vulnerability of the getsyslogfromqtn function in the routercommand.sh script of the Quantenna Wi-Fi chip’s microprogramming system is related to the implementation or modification of arguments. Exploiting this vulnerability could allow an attacker to execute arbitrary commands...

The vulnerability in the `set_tx_pow` function of Quantenna’s Wi-Fi chip software allows a hacker to execute arbitrary commands.

The vulnerability of the settxpow function in Quantenna’s Wi-Fi chips relates to the implementation or modification of certain arguments. Exploiting this vulnerability could allow an attacker to execute arbitrary commands...

The vulnerability of the transmit_file scenario in Quantenna’s microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the transmitfile scenario in Quantenna’s microprogramming software is related to the implementation or modification of arguments. Exploiting this vulnerability can allow an attacker to execute arbitrary commands...

The vulnerability of the runcmd() function in the router_command.sh script of Quantenna’s Wi-Fi chip microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the runcmd function in the routercommand.sh script of Quantenna’s Wi-Fi chip microprogramming system is related to the implementation or modification of arguments. Exploiting this vulnerability could allow a perpetrator to execute arbitrary commands...

The vulnerability of the get_file_from_qtn() function in the router_command.sh script of the Quantenna Wi-Fi chip’s software allows a hacker to execute arbitrary commands.

The vulnerability of the getfilefromqtn function in the routercommand.sh script of the Quantenna Wi-Fi chip’s microprogramming system is related to the implementation or modification of arguments. Exploiting this vulnerability could allow a perpetrator to execute arbitrary commands...

The vulnerability of the sync_time() function in the router_command.sh script of Quantenna’s Wi-Fi chip microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the synctime function in the routercommand.sh script of Quantenna’s Wi-Fi chip microprogramming software is related to the implementation or modification of arguments. Exploiting this vulnerability could allow an attacker to execute arbitrary commands...

Tenda AC18 /goform/setPptpUserList Buffer Overflow Vulnerability

The Tenda AC18 is a router from the Chinese company Tenda. The Tenda AC18 suffers from a buffer overflow vulnerability that originates from a misuse of the parameter list in the file /goform/setPptpUserList, which can be exploited by an attacker to submit a special request and execute arbitrary...

CVE-2025-49013

WilderForge is a Wildermyth coremodding API. A critical vulnerability has been identified in multiple projects across the WilderForge organization. The issue arises from unsafe usage of $ github.event.review.body and other user controlled variables directly inside shell script contexts in GitHub...

CVE-2025-49013

CVE-2025-49013 describes a code-injection vulnerability in WilderForge GitHub Actions workflows caused by unsafe use of user-controlled variables (notably ${{ github.event.review.body }}) inside shell script contexts. The issue affects WilderForge/WilderForge, WilderForge/ExampleMod, WilderForge/...

WilderForge 安全漏洞

WilderForge is a Wildermyth core module API open-sourced by WilderForge. A security vulnerability exists in WilderForge that stems from the improper use of user-controlled variables in GitHub Actions, which could lead to arbitrary command execution...

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

The Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, Inc. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and earlier, which originates from a command injection and could lead to arbitrary command...

CVE-2024-13087

A command injection vulnerability has been reported to affect QHora. If an attacker gains local network access who have also gained an administrator account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following version:...

CVE-2024-13087

CVE-2024-13087 affects QNAP QHora/Qurouter devices. A command injection flaw exists in the router OS, enabling a user with local network access and an administrator account to cause arbitrary code execution via the miro_webserver_lib_RunExecBash path (poor input validation). Impact is described a...

CVE-2025-48782 Soar Cloud HRD Human Resource Management System - Unrestricted Upload of File with Dangerous Type

An unrestricted upload of file with dangerous type vulnerability in the upload file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to execute arbitrary system commands via a malicious file...

Tenda CP3 注入漏洞

Tenda CP3 is a smart camera from Tenda, a Chinese company. A command injection vulnerability exists in Tenda CP3 version 11.10.00.2311090948, which stems from the failure of the function subF3C8C in the file apollo to correctly filter constructed command special characters, commands, and so on. A...

Cisco Unified Communications Manager Command Injection (cisco-sa-vos-command-inject-65s2UCYy)

According to its self-reported version, Cisco Unified Communications Manager is affected by a command injection vulnerability. - A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlyin...

The vulnerability of the Power Hardware Management Console (HMC) device, related to errors in privilege management, allows a perpetrator to execute arbitrary commands.

The vulnerability of the Power Hardware Management Console HMC device is related to errors in privilege management. Exploiting this vulnerability could allow an attacker to execute arbitrary commands...

Atheos 安全漏洞

Atheos is an open source browser-based self-hosted cloud IDE from Atheos. A security vulnerability exists in Atheos versions prior to 6.0.4, which stems from parameter injection and could lead to arbitrary command execution...

CVE-2025-20278

A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user. This vulnerability is due to improper validation of user-supplied...