The vulnerability of the function in /goform/telnet of the Tenda FH1206 router’s microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the function in the /goform/telnet part of the Tenda FH1206 router’s microprogramming system is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using a specially created HTTP request...

CVE-2024-10263

CVE-2024-10263 affects Tickera – WordPress Event Ticketing (Tickera – WordPress Event Ticketing) up to version 3.5.4.4 . The flaw allows unauthenticated attackers to execute arbitrary shortcodes via a value passed to do_shortcode, due to insufficient validation in the shortcode execution path. Im...

NETGEAR R8500 安全漏洞

The NETGEAR R8500 is a wireless router from NETGEAR. A command injection vulnerability exists in the NETGEAR R8500 v1.0.2.160, which stems from the wangateway parameter in the ether.cgi component failing to correctly filter constructed command special characters, commands, and so on. An attacker...

CVE-2024-51253

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doL2TP function...

CVE-2024-51253

CVE-2024-51253 affects DrayTek Vigor3900 v1.5.1.3. Attackers can inject commands into the vulnerable script mainfunction.cgi and execute arbitrary commands by calling the doL2TP function, enabling command execution with low privileges and adjacent access. The available sources describe the impact...

CVE-2024-51247

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doPPPo function...

CVE-2024-51244

CVE-2024-51244 affects DrayTek Vigor3900 (firmware 1.5.1.3). The vulnerability stems from lack of input neutralization in mainfunction.cgi’s doIPSec path, allowing remote attackers to inject commands and execute arbitrary code. Documented impact is arbitrary command execution with the associated ...

CVE-2024-51301

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the packetmonitor function...

CVE-2024-9846 Enable Shortcodes inside Widgets,Comments and Experts <= 1.0.0 - Unauthenticated Arbitrary Shortcode Execution

The The Enable Shortcodes inside Widgets,Comments and Experts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.0.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

CVE-2024-51304

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the ldapsearchdn function...

The vulnerability of the software for managing and monitoring HikCentral Professional video surveillance and security systems lies in the lack of protective measures for the SQL query structure, allowing attackers to execute arbitrary SQL code.

The vulnerability of the software for managing and monitoring HikCentral Professional video surveillance and security systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary SQL code...

CVE-2024-9772

The The Uix Shortcodes – Compatible with Gutenberg plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.9.9. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode...

CVE-2024-9772 Uix Shortcodes – Compatible with Gutenberg <= 1.9.9 - Unauthenticated Arbitrary Shortcode Execution

The The Uix Shortcodes – Compatible with Gutenberg plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.9.9. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode...

WordPress Uix Shortcodes plugin <= 1.9.9 - Unauthenticated Arbitrary Shortcode Execution vulnerability

Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by Francesco Carlucci in WordPress Plugin Uix Shortcodes versions = 1.9.9...

CVE-2024-37844

A stored cross-site scripting XSS vulnerability in MangoOS before 5.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

CVE-2024-45262

An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The params parameter in the call method of the /rpc endpoint is vulnerable to arbitrary directory traversal, which enables attackers to execute scripts under any path...

SECOM WRTR-304GN-304TW-UPSC 操作系统命令注入漏洞

The SECOM WRTR-304GN-304TW-UPSC is a network device from SECOM. An operating system command injection vulnerability exists in the SECOM WRTR-304GN-304TW-UPSC version V02, which stems from improper user input validation and allows an attacker to inject and execute arbitrary system commands on the...

CVE-2024-9837

The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode...

CVE-2024-9837 AADMY – Add Auto Date Month Year Into Posts <= 2.0.1 - Unauthenticated Arbitrary Shortcode Execution

The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode...

OFCMS cross-site scripting vulnerability (CNVD-2024-41671)

OFSoft OFCMS is a content management system CMS developed by China Zhongtian Network OFSoft using Java language. OFCMS version 1.1.2 cross-site scripting vulnerability, the vulnerability stems from the file /admin/system/dict/add.json?sqlid=system.dict.save parameter dictvalue on the user-supplie...