7 matches found
CVE-2025-56799
Reolink desktop application 8.18.12 contains a command injection vulnerability in its scheduled cache-clearing mechanism via a crafted folder name. NOTE: this is disputed by the Supplier because a crafted folder name would arise only if the local user were attacking himself...
CVE-2025-56799
Reolink desktop application 8.18.12 contains a command injection vulnerability in its scheduled cache-clearing mechanism via a crafted folder name. NOTE: this is disputed by the Supplier because a crafted folder name would arise only if the local user were attacking himself...
CVE-2025-56799
Reolink desktop application 8.18.12 contains a command injection vulnerability in its scheduled cache-clearing mechanism via a crafted folder name. NOTE: this is disputed by the Supplier because a crafted folder name would arise only if the local user were attacking himself...
CVE-2025-56799
CVE-2025-56799 affects the Reolink Desktop Application (v8.18.12). The issue is an OS command injection in the cache-clearing scheduler, where a shell command is assembled using a folder path read from a config file without proper sanitization. This can allow an attacker to inject arbitrary comma...
EUVD-2025-35237
Reolink desktop application 8.18.12 contains a command injection vulnerability in its scheduled cache-clearing mechanism via a crafted folder name...
CVE-2025-56799
Reolink desktop application 8.18.12 contains a command injection vulnerability in its scheduled cache-clearing mechanism via a crafted folder name. NOTE: this is disputed by the Supplier because a crafted folder name would arise only if the local user were attacking himself...
Bolt CMS 输入验证错误漏洞
Bolt CMS is an open source PHP-based content management system for the BOLT community. An input validation error vulnerability exists in Bolt CMS version 5.1.7, which stems from the folder name parameter being found to have incorrect input validation, allowing an attacker to perform directory...