Synology DiskStation Manager Injection Vulnerability (CNVD-2022-67835)

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. An injection vulnerability exists in Synology DiskStation Manager, which...

The vulnerability of the software platform for developing and managing online stores Magento Commerce arises from insufficient validation of input data. This allows attackers to execute arbitrary code.

The vulnerability of the Magento Commerce software platform for developing and managing online stores exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

The vulnerability of the Windows operating system arises from insufficient validation of input data, allowing attackers to trigger a service failure.

The vulnerability of the Windows operating system exists due to insufficient checking of input data. Exploiting this vulnerability can allow a perpetrator to cause service failures...

Aternity SteelCentral AppInternals Remote Code Execution Vulnerability

Aternity SteelCentral AppInternals is a monitoring modern automation solution from Aternity, Inc. A remote code execution vulnerability exists in Aternity SteelCentral AppInternals, which stems from a failure of a network system or product to properly filter specific elements of external input da...

The vulnerability of the embedded software of NETGEAR routers such as D3600, D6000, D6100, D6220, D6400, D7800, D8500, DGN2200Bv4, DGN2200v4, R6250, R6300v2, R6400, R6400v2, R6700, R6700v3, R6900, R6900P, R7000, R7000P, R7100LG, R7300, R7900, R7900P, R8000, R8000P, R8300, R8500, WNDR3400v3, WNR3500Lv2, and XR500 lies in the absence of measures for cleaning input data. This allows a malicious actor to execute arbitrary commands.

The vulnerability of the embedded software of NETGEAR routers such as D3600, D6000, D6100, D6220, D6400, D7800, D8500, DGN2200Bv4, DGN2200v4, R6250, R6300v2, R6400, R6400v2, R6700, R6700v3, R6900, R6900P, R7000, R7000P, R7100LG, R7300, R7900, R7900P, R8000, R8000P, R8300, R8500, WNDR3400v3,...

The vulnerability of the embedded software of NETGEAR EX6120, EX6130, EX7000, EX7500, EX3700, EX3800, RBR850, RBS850, and RBK852 lies in the lack of measures for cleaning input data, allowing attackers to execute arbitrary commands.

The vulnerability of the embedded software of NETGEAR EX6120, EX6130, EX7000, EX7500, EX3700, EX3800, RBR850, RBS850, and RBK852 lies in the lack of measures for cleaning incoming data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the built-in software of NETGEAR routers such as RBR20, RBR40, RBR50, RBS20, RBS40, RBR50, RBK20, RBK40, and RBK50 lies in the lack of measures for cleaning input data. This allows a hacker to execute arbitrary commands.

The vulnerability of the embedded software of NETGEAR routers such as RBR20, RBR40, RBR50, RBS20, RBS40, RBR50, RBK20, RBK40, and RBK50 lies in the lack of measures for cleaning incoming data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of Windows operating systems arises from insufficient checking of input data, allowing attackers to disclose sensitive information that should be protected.

Vulnerabilities in Windows operating systems exist due to insufficient checking of input data. Exploiting these vulnerabilities can allow attackers to disclose protected information...

The vulnerability of the msp_info.htm file implementation in D-Link DI-7200G V2.E1 microprogrammable router software allows a hacker to execute arbitrary commands.

The vulnerability of the mspinfo.htm file implementation of the D-Link DI-7200G V2.E1 router microprogramming system is related to insufficient cleaning of input data during the processing of the cmd parameter. Exploiting this vulnerability allows an attacker to execute arbitrary commands remotel...

The vulnerability of the implementation of the SetWLanACLSettings() function in D-Link DIR-823-Pro wireless router software allows a hacker to execute arbitrary commands.

The vulnerability of the implementation of the SetWLanACLSettings function in D-Link DIR-823-Pro wireless router microprogramming software is related to insufficient cleaning of input data during the processing of the parameter wl0.0maclist. Exploiting this vulnerability allows a remote attacker ...

Apache Cassandra Code Injection Vulnerability

Apache Cassandra is a distributed Nosql database from the American Apache Apache Foundation. Apache Cassandra suffers from a code injection vulnerability that stems from a network system or product failing to properly filter specific elements of externally entered data during the construction of ...

Gitea Cross-Site Scripting Vulnerability (CNVD-2022-11525)

A cross-site scripting vulnerability exists in Gitea, a Go-based lightweight git service developed by the Gitea community. The vulnerability stems from a mirror setting in the product wiki/issue link that does not effectively handle special characters in the input data. An attacker could execute...

Vulnerabilities of the built-in software on NETGEAR Wi-Fi routers such as R6700AX, R7800, R8900, R9000, RAX10, RAX120v1, RAX120v2, RAX70, RAX78, XR450, XR500, XR700, and the low-cost LTE modem LBR1020; vulnerabilities of the wireless signal amplifiers EX2700, WN3000RPv2, WN3000RPv3; and vulnerabilities of the Orbi Wi-Fi system LBR20—all related to the lack of measures to protect input data. These vulnerabilities allow attackers to execute arbitrary commands or gain unauthorized access to protected information.

The vulnerabilities of NETGEAR Wi-Fi routers such as R6700AX, R7800, R8900, R9000, RAX10, RAX120v1, RAX120v2, RAX70, RAX78, XR450, XR500, XR700, and the low-cost LTE modem LBR1020, as well as wireless signal amplifiers like EX2700, WN3000RPv2, WN3000RPv3, and the Orbi Wi-Fi system LBR20, are...

The vulnerability of NETGEAR’s Wi-Fi routers—CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850—is related to insufficient cleaning of input data, allowing attackers to execute arbitrary commands.

The vulnerability of the built-in Wi-Fi router software of NETGEAR models CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850 lies in insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of NETGEAR Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, arises from insufficient cleaning of input data. This allows attackers to execute arbitrary commands.

The vulnerability of NETGEAR Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of NETGEAR’s Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, arises from insufficient cleaning of input data. This allows attackers to execute arbitrary commands.

The vulnerability of NETGEAR Wi-Fi router microprogramming systems, such as RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of NETGEAR’s Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, arises from insufficient cleaning of input data. This allows attackers to execute arbitrary commands.

The vulnerability of NETGEAR Wi-Fi router microprogramming systems, such as RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of NETGEAR’s Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, arises from insufficient cleaning of input data. This allows attackers to execute arbitrary commands.

The vulnerability of NETGEAR Wi-Fi router microprogramming systems, such as RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of NETGEAR CBR40, CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, RBS850, RBS40V, and RBW30 Wi-Fi router microprogramming systems lies in insufficient cleaning of input data, allowing attackers to execute arbitrary commands.

The vulnerability of NETGEAR Wi-Fi router microprogramming systems, such as CBR40, CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, RBS850, RBS40V, and RBW30, is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of NETGEAR Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, arises from insufficient cleaning of input data. This allows attackers to execute arbitrary commands.

The vulnerability of NETGEAR Wi-Fi router software, including models RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850, is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...