CVE-2020-37123

Pinger 1.0 contains a remote code execution vulnerability that allows attackers to inject shell commands through the ping and socket parameters. Attackers can exploit the unsanitized input in ping.php to write arbitrary PHP files and execute system commands by appending shell metacharacters...

PT-2025-54239

Name of the Vulnerable Software and Affected Versions SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and earlier Description The software contains a conditional command injection issue. Local authenticated users can create malicious files in the /tmp directory. Unauthenticated attackers can execute...

EUVD-2022-30060

Malicious code in bioql PyPI...

CVE-2024-42905

Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v.7.4.12.60 has a command execution vulnerability, which can be exploited to obtain device administrator privileges via the getVar function in the code/function/system/tool/ping.php file...

Digital China Networks DCME-320 安全漏洞

Digital China Networks DCME-320 is a wireless router from Digital China Networks China. A security vulnerability exists in the Digital China Networks DCME-320 version v.7.4.12.60, which originates from the getVar function in the code/function/system/tools/ping.php file that can be used to gain...

CVE-2024-42905

The CVE-2024-42905 entry covers Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v7.4.12.60, which has a command execution vulnerability in the getVar function of code/function/system/tool/ping.php. This issue can allow an attacker to obtain device administrator privileges via a network ...

SeaCMS 安全漏洞

SeaCMS is a free and open source web content management system written in PHP. The system has been designed primarily to manage video-on-demand resources. A code execution vulnerability exists in SeaCMS 12.9 and earlier versions, which stems from the fact that adminping.php directly splices...

PT-2023-32805

Name of the Vulnerable Software and Affected Versions Hikvision Intercom Broadcasting System versions 3.0.3 20201113 RELEASEHIK Description A critical issue exists in Hikvision Intercom Broadcasting System. The issue affects unknown code within the /php/ping.php file. Manipulating the jsondataip...

PT-2023-29141 · Seacms · Seacms

Name of the Vulnerable Software and Affected Versions: SeaCMS version 12.9 Description: The issue is related to an arbitrary file write vulnerability. This vulnerability is present in the admin ping.php component. Recommendations: For SeaCMS version 12.9, consider disabling access to the admin...

CVE-2022-25390

DCN Firewall DCME-520 was discovered to contain a remote command execution RCE vulnerability via the host parameter in the file /system/tool/ping.php...

Command injection

DCN Firewall DCME-520 was discovered to contain a remote command execution RCE vulnerability via the host parameter in the file /system/tool/ping.php...

CVE-2022-25390

CVE-2022-25390 affects DCN Firewall DCME-520. The vulnerability is a remote command execution (RCE) via the host parameter in the file /system/tool/ping.php. The available sources describe the root cause as an RCE path in that script, with high impact on confidentiality, integrity, and availabili...

CVE-2022-25390

DCN Firewall DCME-520 was discovered to contain a remote command execution RCE vulnerability via the host parameter in the file /system/tool/ping.php...

Advantech R-SeeNet ping.php Command Injection (CVE-2021-21805)

A command injection vulnerability exists in Advantech R-SeeNet. The vulnerability is due to insufficient validation of the parameter in ping.php...

CVE-2021-21805

An OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 20.10.2020. A specially crafted HTTP request can lead to arbitrary OS command execution. An attacker can send a crafted HTTP request to trigger this vulnerability...

Command injection

An OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 20.10.2020. A specially crafted HTTP request can lead to arbitrary OS command execution. An attacker can send a crafted HTTP request to trigger this vulnerability...

CVE-2021-21805

An OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 20.10.2020. A specially crafted HTTP request can lead to arbitrary OS command execution. An attacker can send a crafted HTTP request to trigger this vulnerability...

CVE-2021-21805

CVE-2021-21805 affects Advantech R-SeeNet v2.4.12. The ping.php script is vulnerable to remote OS command injection via specially crafted HTTP requests, enabling arbitrary commands execution without credentials. The Nuclei template and Red Hat/other feeds corroborate remote execution risk; report...

PT-2021-14788 · Advantech · Advantech R-Seenet

Name of the Vulnerable Software and Affected Versions: Advantech R-SeeNet version 2.4.12 Description: An OS Command Injection issue exists in the ping.php script functionality. A specially crafted HTTP request can lead to arbitrary OS command execution. An attacker can send a crafted HTTP request...

Advantech R-SeeNet ping.php OS Command Injection Vulnerability

Advantech R-SeeNet is an industrial monitoring software from Advantech, Taiwan, China. The software is based on the snmp protocol for monitoring platforms, and is available for Linux and Windows platforms.An OS command injection vulnerability exists in Advantech R-SeeNet ping.php, which stems fro...