D-Link Go-RT-AC750 命令注入漏洞

The D-Link GO-RT-AC750 is a wireless dual-band simple router from China-based AUO D-Link. A security vulnerability exists in the D-Link Go-RT-AC750 revAv101b03 version, which was discovered to contain a command injection vulnerability via the service parameter of soapcgi.main...

UBUNTU-CVE-2018-20806

Phamm aka PHP LDAP Virtual Hosting Manager 0.6.8 allows XSS via the login page the /public/main.php action parameter...

CVE-2019-8363

Verydows 2.0 has XSS via the index.php?c=main a parameter, as demonstrated by an a=indexXSS value...

Zendo Project Management Software Open Source 9.1.1 SQL Injection Vulnerability

Zendo is an open source project management software. Zendo Project Management Software Open Source 9.1.1 SQL injection vulnerability exists in module\block\control.php page. Due to the lack of filtering of the 'main' parameter, allowing attackers to exploit the vulnerability to obtain sensitive...