8 matches found
EUVD-2001-1382
Malware in sbrugna...
EUVD-2019-11957
Malware in sbrugna...
CVE-2020-8963
TimeTools SC7105 1.0.007, SC9205 1.0.007, SC9705 1.0.007, SR7110 1.0.007, SR9210 1.0.007, SR9750 1.0.007, SR9850 1.0.007, T100 1.0.003, T300 1.0.003, and T550 1.0.003 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the t3.cgi srmodel or srtime parameter...
JavaCPP Presets 代码注入漏洞
JavaCPP Presets is a Bytedeco open source project to provide native C++ libraries for Java distributions. A code injection vulnerability exists in JavaCPP Presets versions prior to 1.5.9, which stems from the fact that all operations use parameters in an insecure manner that can lead to command...
PT-2023-23442 · Linksys · Linksys E2000
Name of the Vulnerable Software and Affected Versions: Linksys E2000 router version 1.0.06 Description: The issue is a command injection vulnerability. If an attacker gains web management privileges, they can inject commands into the post request parameters wl ssid, wl ant, wl rate, WL atten ctl,...
USN-5221-1 redis vulnerabilities
It was discovered that Redis incorrectly handled certain specially crafted Lua scripts. A remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2021-32626 It was discovered that Redis incorrectly handled some malformed requests when using Redis...
libssh2 Security Bypass Vulnerability
libssh2 is a client-side C library for implementing the SSH2 protocol. A security vulnerability exists in libssh2 that allows remote attackers to exploit vulnerabilities and cause the SSHv2 Diffie-Hellman handshake to use insecure random parameters...
Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk)
The prior fix to CVE-2013-0155 was incomplete and the use of common 3rd party libraries can accidentally circumvent the protection. Due to the way that Rack::Request and Rails::Request interact, it is possible for a 3rd party or custom rack middleware to parse the parameters insecurely and store...