2 matches found
CVE-2026-22227 Command Injection Vulnerability on TP-Link Archer BE230 v1.2
A command injection vulnerability may be exploited after the admin's authentication via the configuration backup restoration function of the TP-Link Archer BE230 v1.2. Successful exploitation could allow an attacker to gain full administrative control of the device, resulting in severe compromise...
C99Shell 1.0 Pre-Release build 16 (Web Shell) - ch99.php Cross-Site Scripting
C99Shell 1.0 Pre-Release build 16 Web Shell - ch99.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40134/info C99Shell is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issu...