20 matches found
CVE-2025-1610
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1609
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this vulnerability is the function websGetVar of the file /goform/setcmd. The manipulation of the argument cmd leads to os command injection. The attack can be launched remotely. The exploit has...
EUVD-2025-4391
Malicious code in bioql PyPI...
EUVD-2025-4389
Malicious code in bioql PyPI...
CVE-2025-1608
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-1610
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1610 LB-LINK AC1900 Router set_blacklist websGetVar os command injection
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1610 LB-LINK AC1900 Router set_blacklist websGetVar os command injection
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1610
LB-LINK AC1900 Router 1.0.2 is affected by an OS command injection in the websGetVar function of /goform/set_blacklist. The vulnerability stems from manipulating the mac/enable parameter, potentially allowing remote exploitation. The CVE is supported by multiple sources (NVD, Red Hat, CVE lists) ...
CVE-2025-1608
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-1608
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-1609 LB-LINK AC1900 Router set_cmd websGetVar os command injection
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this vulnerability is the function websGetVar of the file /goform/setcmd. The manipulation of the argument cmd leads to os command injection. The attack can be launched remotely. The exploit has...
CVE-2025-1609 LB-LINK AC1900 Router set_cmd websGetVar os command injection
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this vulnerability is the function websGetVar of the file /goform/setcmd. The manipulation of the argument cmd leads to os command injection. The attack can be launched remotely. The exploit has...
CVE-2025-1609
CVE-2025-1609 affects LB-LINK AC1900 Router firmware 1.0.2. The vulnerability lies in the websGetVar handling of the cmd parameter in /goform/set_cmd, enabling remote os command injection. Impact: potential remote compromise with high confidentiality, integrity, and availability implications as p...
CVE-2025-1608 LB-LINK AC1900 Router set_manpwd websGetVar os command injection
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-1608 LB-LINK AC1900 Router set_manpwd websGetVar os command injection
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-1608
CVE-2025-1608 affects LB-LINK AC1900 Router (firmware 1.0.2). The vulnerable component is function websGetVar in /goform/set_manpwd, where manipulating the routepwd argument leads to OS command injection. The vulnerability can be exploited remotely and public exploits have been disclosed. Multipl...
LB-LINK AC1900 命令注入漏洞
LB-LINK AC1900 is a wireless router from China Bilink LB-LINK. A command injection vulnerability exists in the LB-LINK AC1900 version 1.0.2, which originates from the parameter routewd in the file /goform/setmanpwd, which can lead to the injection of operating system commands...
LB-LINK AC1900 命令注入漏洞
LB-LINK AC1900 is a wireless router from China Bilink LB-LINK. A command injection vulnerability exists in the LB-LINK AC1900 version 1.0.2, which originates from the parameter mac/enable in the file /goform/setblacklist that can lead to OS command injection...
多款LB-LINK产品命令注入漏洞
LB-LINK BL-AC1900 and others are a wireless router from China Bilink LB-LINK. A security vulnerability exists in LB-LINK BL-AC19002.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8, which originates from the use of the mac, time1, and time1 in the /goform/se...