CVE-2021-45998

D-Link device DIR882 DIR882FW1.30B06Hotfix02 was discovered to contain a command injection vulnerability in the LocalIPAddress parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...

CVE-2018-20218

An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. The login form passes user input directly to a shell command without any kind of escaping or validation in /usr/share/www/check.lp file. An attacker is able to perform command injection using the "password" parameter...

CVE-2025-44881

A command injection vulnerability in the component /cgi-bin/qos.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input...

BlueZ 1.x/2.x - HIDD Bluetooh HID Command Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22076/info BlueZ hidd is prone to a device-command-injection vulnerability. A remote attacker can exploit this issue to gain control of mouse and keyboard HIDs human interface device. This will allow the attacker to...

BlueZ 1.x/2.x - HIDD Bluetooh HID Command Injection

source: https://www.securityfocus.com/bid/22076/info BlueZ hidd is prone to a device-command-injection vulnerability. A remote attacker can exploit this issue to gain control of mouse and keyboard HIDs human interface device. This will allow the attacker to interact with the targeted computer in...