2 matches found
PT-2025-2542 · Wavlink · Wavlink Ac3000
Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A cross-site scripting xss vulnerability exists in the set lang CountryCode functionality of login.cgi. A specially crafted HTTP request can lead to a disclosure of sensitive information...
PCPIN Chat 5.0.4 - loginlanguage Remote Code Execution
PCPIN Chat 5.0.4 - loginlanguage Remote Code Execution !/usr/bin/php -q -d shortopentag=on works with magicquotesgpc = Off\r\n"; echo "dork: "powered by PCPIN.com"\r\n\r\n"; if $argc "" OR login = "" or isnull1/0/ AND password = "somehash" AND activated = "1" LIMIT 1 ii arbitrary local inclusion:...