TP-LINK - Local File Inclusion

TP-LINK is susceptible to local file inclusion in these products: Archer C5 1.2 with firmware before 150317, Archer C7 2.0 with firmware before 150304, and C8 1.0 with firmware before 150316, Archer C9 1.0, TL-WDR3500 1.0, TL-WDR3600 1.0, and TL-WDR4300 1.0 with firmware before 150302, TL-WR740N...

Schneider Electric多款产品 安全特征问题漏洞

Schneider Electric Easergy MiCOM Px40 Series are products of Schneider Electric, a French company. The Schneider Electric Easergy MiCOM Px40 Series consists of a series of power protection and control relay devices. The Schneider Electric Easergy MiCOM C264 is an industrial communication gateway...

CVE-2021-31584

Sipwise C5 NGCP wwwcsc version 3.6.4 up to and including platform NGCP CE mr3.8.13 allows call/click2dial CSRF attacks for actions with administrative privileges...

EUVD-2021-18478

Malware in sbrugna...

EUVD-2006-2714

Malware in sbrugna...

EUVD-2023-42958

Malicious code in bioql PyPI...

CVE-2024-28344

An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open Redirect vulnerability allows attackers to control the "back" parameter in the URL through a double encoded URL...

CVE-2024-28345

An issue discovered in Sipwise C5 NGCP Dashboard below mr11.5.1 allows a low privileged user to access the Journal endpoint by directly visit the URL...

CVE-2023-39224

Archer C5 firmware all versions and Archer C7 firmware versions prior to 'Archer C7JPV2230602' allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Note that Archer C5 is no longer supported, therefore the update for this product is not provided...

PT-2025-3005 · Nradio · Nradio N8-180 Nros

Name of the Vulnerable Software and Affected Versions: NRadio N8-180 NROS version 1.9.2.n3.c5 Description: An issue was discovered in NRadio devices, where the "/cgi-bin/luci/nradio/basic/radio" endpoint is vulnerable to XSS via the 2.4 GHz and 5 GHz name parameters. This allows an attacker to...

PT-2025-3004

Name of the Vulnerable Software and Affected Versions NRadio N8-180 NROS version 1.9.2.n3.c5 Description A problem was discovered in NRadio devices, where the "/cgi-bin/luci/nradio/basic/radio" endpoint is vulnerable to command injection through the 2.4 GHz and 5 GHz name parameters. This allows ...

NRadio N8-180 安全漏洞

The NRadio N8-180 is a wireless receiver from NRadio. A security vulnerability exists in the NRadio N8-180 NROS-1.9.2.n3.c5 version, which stems from vulnerability to cross-site scripting attacks via the 2.4 GHz and 5 GHz name parameters...

Barco多款产品 安全漏洞

Barco ClickShare CX-30/20 and others are products of Barco Belgium.Barco ClickShare CX-30/20 is a seamless wireless conferencing solution for small and medium-sized meeting rooms.Barco ClickShare C-5/10 is a seamless wireless The Barco ClickShare Bar Pro/Core is an advanced all-in-one video...

Archer C7 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Archer C7 Directory Traversal Vulnerability', 'Description' = %q This module exploits a directory traversal vulnerability in the PATHINFO found a...

CVE-2024-28344

An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open Redirect vulnerability allows attackers to control the "back" parameter in the URL through a double encoded URL...

CVE-2024-28344

An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open Redirect vulnerability allows attackers to control the "back" parameter in the URL through a double encoded URL...

CVE-2024-28345

An issue discovered in Sipwise C5 NGCP Dashboard below mr11.5.1 allows a low privileged user to access the Journal endpoint by directly visit the URL...

PT-2024-22398 · Sipwise · Sipwise C5 Ngcp Dashboard

Name of the Vulnerable Software and Affected Versions: Sipwise C5 NGCP Dashboard versions prior to mr11.5.1 Description: An Open Redirect issue was found, allowing attackers to control the back parameter in the URL through a double encoded URL. This enables attackers to redirect users to unintend...

CVE-2024-28344

CVE-2024-28344: Open Redirect vulnerability in Sipwise C5 NGCP Dashboard before mr11.5.1. The issue allows an attacker to manipulate the back parameter via a double-encoded URL. Impact is low in CVSS terms per provided metrics, and exploitation would require user interaction. Remediation: update ...

Sipwise C5 NGCP Dashboard 安全漏洞

Sipwise C5 NGCP Dashboard is a management interface from Sipwise that is used to manage and monitor various features and services of the Sipwise C5 Next Generation Communication Platform NGCP. A security vulnerability exists in Sipwise C5 NGCP Dashboard versions prior to mr11.5.1, which stems fro...