47 matches found
CVE-2025-50669
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wanping parameter in the /wanping.asp endpoint...
EUVD-2025-209359
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wanping parameter in the /wanping.asp endpoint...
CVE-2025-50669
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wanping parameter in the /wanping.asp endpoint...
CVE-2025-50669
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wanping parameter in the /wanping.asp endpoint...
CVE-2025-50669
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wanping parameter in the /wanping.asp endpoint...
CVE-2020-37123 Pinger 1.0 - Remote Code Execution
Pinger 1.0 contains a remote code execution vulnerability that allows attackers to inject shell commands through the ping and socket parameters. Attackers can exploit the unsanitized input in ping.php to write arbitrary PHP files and execute system commands by appending shell metacharacters...
CVE-2020-37123
CVE-2020-37123 affects Pinger 1.0 and describes a remote code execution vulnerability. The issue arises from unsanitized input in ping.php, enabling an attacker to inject shell commands, write arbitrary PHP files, and execute system commands by appending shell metacharacters. The entry indicates ...
CVE-2020-37123 Pinger 1.0 - Remote Code Execution
Pinger 1.0 contains a remote code execution vulnerability that allows attackers to inject shell commands through the ping and socket parameters. Attackers can exploit the unsanitized input in ping.php to write arbitrary PHP files and execute system commands by appending shell metacharacters...
PT-2026-6567
Pinger 1.0 contains a remote code execution vulnerability that allows attackers to inject shell commands through the ping and socket parameters. Attackers can exploit the unsanitized input in ping.php to write arbitrary PHP files and execute system commands by appending shell metacharacters...
CVE-2020-12246
Beeline Smart Box 2.0.38 routers allow "Advanced settings Other Diagnostics" OS command injection via the Ping pingipaddr parameter, the Nslookup nslookupipaddr parameter, or the Traceroute tracerouteipaddr parameter...
Ilevia EVE X1 Server 安全漏洞
Ilevia EVE X1 Server is a smart home and building automation from Ilevia, Italy. A security vulnerability exists in Ilevia EVE X1 Server that stems from the ping.php component not securely filtering IP parameters, which could lead to the execution of arbitrary code...
EUVD-2022-39265
Malicious code in bioql PyPI...
CVE-2022-36559
Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain a command injection vulnerability via the Ping parameter at pingexec.cgi...
Microhard Bullet-LTE Improper Neutralization of Special Elements used in an OS Command (CVE-2020-17406)
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microhard Bullet-LTE prior to v1.2.0-r1112. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of the ping parameter provided to tools.sh. The issu...
VulnCheck KEV: CVE-2022-36559
Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain a command injection vulnerability via the Ping parameter at pingexec.cgi...
EnGenius多款产品 注入漏洞
The EnGenius ENH1350EXT and others are an outdoor wireless access point from EnGenius. An injection vulnerability exists in several EnGenius products, which stems from a mis-manipulation of the parameter diagping that can lead to command injection. The following products are affected: EnGenius...
CVE-2024-51186
D-Link DIR-820L 1.05b03 was discovered to contain a remote code execution RCE vulnerability via the pingaddr parameter in the pingv4 and pingv6 functions...
CVE-2024-51186
CVE-2024-51186 affects the D-Link DIR-820L router (firmware 1.05b03). A remote code execution vulnerability exists via the ping_addr parameter in the ping_v4 and ping_v6 functions. Public sources in the connected documents consistently describe an RCE outcome, with high impact on confidentiality,...
PT-2024-26872 · Engenius · Engenius Enstation5-Ac
Name of the Vulnerable Software and Affected Versions: EnGenius EnStation5-AC A8J-ENS500AC version 1.0.0 Description: The issue allows blind OS command injection via shell metacharacters in the Ping and Speed Test parameters. This can potentially be exploited to execute unauthorized commands on t...
EnGenius EnStation5-AC A8J-ENS500AC 安全漏洞
The EnGenius EnStation5-AC A8J-ENS500AC is a wireless access point from EnGenius. A security vulnerability exists in the EnGenius EnStation5-AC A8J-ENS500AC version 1.0.0, which originates from allowing blind injection of operating system commands via shell metacharacters in the parameters Ping a...