27 matches found
EUVD-2017-16790
Malware in sbrugna...
EUVD-2024-31740
Malicious code in bioql PyPI...
EUVD-2024-31739
Malicious code in bioql PyPI...
CVE-2025-10774
A weakness has been identified in Ruijie 6000-E10 up to 2.4.3.6-20171117. This affects an unknown part of the file /view/vpn/autovpn/subcommit.php. This manipulation of the argument key causes os command injection. It is possible to initiate the attack remotely. The exploit has been made availabl...
CVE-2025-10774
A weakness has been identified in Ruijie 6000-E10 up to 2.4.3.6-20171117. This affects an unknown part of the file /view/vpn/autovpn/subcommit.php. This manipulation of the argument key causes os command injection. It is possible to initiate the attack remotely. The exploit has been made availabl...
CVE-2025-10774
CVE-2025-10774 affects Ruijie 6000-E10, up to version 2.4.3.6-20171117. The issue resides in an unknown portion of the file /view/vpn/autovpn/sub_commit.php, where manipulation of the keyword parameter (key) enables an OS command injection. The vulnerability can be exploited remotely and has seen...
CVE-2025-10774 Ruijie 6000-E10 sub_commit.php os command injection
A weakness has been identified in Ruijie 6000-E10 up to 2.4.3.6-20171117. This affects an unknown part of the file /view/vpn/autovpn/subcommit.php. This manipulation of the argument key causes os command injection. It is possible to initiate the attack remotely. The exploit has been made availabl...
CVE-2025-10774 Ruijie 6000-E10 sub_commit.php os command injection
A weakness has been identified in Ruijie 6000-E10 up to 2.4.3.6-20171117. This affects an unknown part of the file /view/vpn/autovpn/subcommit.php. This manipulation of the argument key causes os command injection. It is possible to initiate the attack remotely. The exploit has been made availabl...
PT-2025-38672
Name of the Vulnerable Software and Affected Versions Ruijie 6000-E10 versions through 2.4.3.6-20171117 Description A weakness exists in Ruijie 6000-E10. The issue affects an unknown part of the file /view/vpn/autovpn/sub commit.php. Manipulation of the key argument can lead to operating system...
Ruijie 6000-E10 操作系统命令注入漏洞
Ruijie 6000-E10 is an Internet behavior management and auditing device from China Ruijie Ruijie. An OS command injection vulnerability exists in Ruijie 6000-E10 2.4.3.6-20171117 and earlier versions, which originates from incorrect manipulation of the parameter key in the file...
CVE-2024-3142
A vulnerability was found in Clavister E10 and E80 up to 14.00.10 and classified as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed ...
CVE-2024-3142
A vulnerability was found in Clavister E10 and E80 up to 14.00.10 and classified as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed ...
CVE-2024-3142 Clavister E10/E80 Setting cross-site request forgery
A vulnerability was found in Clavister E10 and E80 up to 14.00.10 and classified as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed ...
CVE-2024-3142
CVE-2024-3142 affects Clavister E10/E80 firmware up to 14.00.10. The issue lies in the Setting Handler component, enabling cross-site request forgery (CSRF). Attackers may trigger it remotely, and the exploit has been disclosed publicly. Remediation: upgrade to version 14.00.11 to address the vul...
CVE-2024-3142 Clavister E10/E80 Setting cross-site request forgery
A vulnerability was found in Clavister E10 and E80 up to 14.00.10 and classified as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed ...
Clavister E10和E80 跨站请求伪造漏洞
The Clavister E10 and Clavister E80 are both firewalls from the Swedish company Clavister. A cross-site request forgery vulnerability exists in Clavister E10 and E80 version 20240323 and earlier. An attacker could exploit this vulnerability to perform a cross-site request forgery attack...
CVE-2024-3141
A vulnerability has been found in Clavister E10 and E80 up to 14.00.10 and classified as problematic. This vulnerability affects unknown code of the file /?Page=Node&OBJ=/System/AdvancedSettings/DeviceSettings/MiscSettings of the component Misc Settings Page. The manipulation of the argument...
CVE-2024-3141
CVE-2024-3141 affects Clavister E10/E80 up to 14.00.10. The vulnerability lies in the Misc Settings Page component, specifically the file path related to /?Page=Node&OBJ=/System/AdvancedSettings/DeviceSettings/MiscSettings, where manipulation of the arguments WatchdogTimerTime, BufFloodRebootTime...
CVE-2024-3141 Clavister E10/E80 Misc Settings Page MiscSettings cross site scripting
A vulnerability has been found in Clavister E10 and E80 up to 14.00.10 and classified as problematic. This vulnerability affects unknown code of the file /?Page=Node&OBJ=/System/AdvancedSettings/DeviceSettings/MiscSettings of the component Misc Settings Page. The manipulation of the argument...
CVE-2024-3141 Clavister E10/E80 Misc Settings Page MiscSettings cross site scripting
A vulnerability has been found in Clavister E10 and E80 up to 14.00.10 and classified as problematic. This vulnerability affects unknown code of the file /?Page=Node&OBJ=/System/AdvancedSettings/DeviceSettings/MiscSettings of the component Misc Settings Page. The manipulation of the argument...