CVE-2024-2414

CVE-2024-2414 affects Movistar 4G router (S_WLD71-T1_v2.0.201820). The issue is an unprotected primary channel with the adb service listening on port 5555, granting a root shell. Public sources report root-access via ADB pre-auth, high impact (C:H, I:H, A:H) with adjacent attack vector and no use...

CVE-2024-2414 Unprotected Primary Channel vulnerability in Movistar 4G router

The primary channel is unprotected on Movistar 4G router affecting E version SWLD71-T1v2.0.201820. This device has the 'adb' service open on port 5555 and provides access to a shell with root privileges...

CentOS Web Panel SQL Injection Vulnerability (CNVD-2020-44588)

CentOS Web Panel CWP is a free web hosting control panel. A SQL injection vulnerability exists in the ajaxmailautoreply.php file in CentOS Web Panel cwp-e version 17.0.9.8.923, which originates from the program not properly validating a user-supplied string. An attacker could exploit this...

CentOS Web Panel ajax_new_account.php file SQL injection vulnerability

CentOS Web Panel CWP is a free web hosting control panel. A SQL injection vulnerability exists in the ajaxnewaccount.php file in CentOS Web Panel cwp-e version 17.0.9.8.923, which originates when the program does not properly validate a user-supplied string. An attacker could exploit this...

CentOS Web Panel SQL Injection Vulnerability (CNVD-2020-43612)

CentOS Web Panel CWP is a free web hosting control panel. A SQL injection vulnerability exists in the ajaxlistaccounts.php file in CentOS Web Panel cwp-e version 17.0.9.8.923, which stems from the program not properly validating a user-supplied string. An attacker could exploit this vulnerability...

CVE-2012-1447

The ELF file parser in Fortinet Antivirus 4.2.254.0, eSafe 7.0.17.0, Dr.Web 5.0.2.03300, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified eversion field. NOTE: this may later be SPLIT into multiple CVEs if additional information is...