2 matches found
CVE-2018-15137
CeLa Link CLR-M20 devices are affected: unauthorized users can upload arbitrary files (asp, aspx, cfm, html, jhtml, jsp, shtml) via WebDAV PUT, enabling remote code execution. The issue is tied to the WebDAV upload capability, with CVSS metrics indicating a critical impact (CRITICAL, 9.8/10 in CV...
Cela Link CLR-M20 2.7.1.6 - Arbitrary File Upload
Cela Link CLR-M20 2.7.1.6 - Arbitrary File Upload Exploit Title: Cela Link CLR-M20 2.7.1.6 - Arbitrary File Upload Date: 2018-07-13 Shodan Dork: CLR-M20 Exploit Author: Safak Aslan Software Link: http://www.celalink.com Version: 2.7.1.6 CVE: 2018-15137 Authentication Required: No Tested on: Windo...