37 matches found
EUVD-2017-15284
Malware in sbrugna...
EUVD-2013-6962
Malware in sbrugna...
EUVD-2019-0201
Malware in sbrugna...
CVE-2025-48047
An authenticated user can perform command injection via unsanitized input to the NetFax Server’s ping functionality via the /test.php endpoint...
CVE-2025-48047
An authenticated user can perform command injection via unsanitized input to the NetFax Server’s ping functionality via the /test.php endpoint...
CVE-2025-48047 MICI Network Co. Ltd. NetFax Server Command Injection
An authenticated user can perform command injection via unsanitized input to the NetFax Server’s ping functionality via the /test.php endpoint...
CVE-2025-48047
CVE-2025-48047: AFFECTED product is NetFax Server. An authenticated user can trigger a command injection through unsanitized input to the ping functionality exposed at /test.php. Root cause: improper sanitization of input in the ping endpoint allows execution of arbitrary commands on the server. ...
CVE-2021-43319
Zoho ManageEngine Network Configuration Manager before 125488 is vulnerable to command injection due to improper validation in the Ping functionality...
Moxa NPort W2x50A Authenticated OS Command Injection in Web Server Ping Functionality (CVE-2018-19659)
An exploitable authenticated command-injection vulnerability exists in the web server functionality of Moxa NPort W2x50A products with firmware before 2.2 Build18082311. A specially crafted HTTP POST request to /goform/netWebPingGetValue can result in running OS commands as the root user. This is...
CVE-2023-33381
A command injection vulnerability was found in the ping functionality of the MitraStar GPT-2741GNAC router firmware version ARg5.8110WVN0b72. The vulnerability allows an authenticated user to execute arbitrary OS commands by sending specially crafted input to the router via the ping function...
CVE-2023-33381
A command injection vulnerability was found in the ping functionality of the MitraStar GPT-2741GNAC router firmware version ARg5.8110WVN0b72. The vulnerability allows an authenticated user to execute arbitrary OS commands by sending specially crafted input to the router via the ping function...
CVE-2023-33381
A command injection vulnerability was found in the ping functionality of the MitraStar GPT-2741GNAC router firmware version ARg5.8110WVN0b72. The vulnerability allows an authenticated user to execute arbitrary OS commands by sending specially crafted input to the router via the ping function...
Zoho ManageEngine Command Injection (CVE-2021-43319)
A command injection vulnerability exists in ManageEngine Network Configuration Manager. This vulnerability is due to insufficient validation in the ipaddress field of the ping functionality in add device web interface...
Command injection
An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...
CVE-2021-21883
Lantronix PremierWave 2050 Web Manager Diagnostics: Ping is affected by an OS command injection (CVE-2021-21883). A specially crafted authenticated HTTP request can trigger execution of arbitrary OS commands with root privileges via the unsanitized host parameter used to build the nd ic6 command,...
CVE-2021-21883
An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...
CVE-2021-43319
Zoho ManageEngine Network Configuration Manager before 125488 is vulnerable to command injection due to improper validation in the Ping functionality...
Command injection
Zoho ManageEngine Network Configuration Manager before 125488 is vulnerable to command injection due to improper validation in the Ping functionality...
CVE-2021-43319
Zoho ManageEngine Network Configuration Manager before 125488 is vulnerable to command injection due to improper validation in the Ping functionality...
Lantronix PremierWave 2050 Web Manager Ping stack-based buffer overflow vulnerability
Summary A stack-based buffer overflow vulnerability exists in the Web Manager Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4 in QEMU. A specially crafted HTTP request can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...