CVE-2019-19117

/usr/lib/lua/luci/controller/admin/autoupgrade.lua on PHICOMM K2PSG1218 V22.5.9.163 devices allows remote authenticated users to execute any command via shell metacharacters in the cgi-bin/luci autoUpTime parameter...

PHICOMM K2 (PSG1218) Input Validation Vulnerability

The PHICOMM K2 PSG1218 is a wireless router product from the Chinese company PHICOMM. An input validation vulnerability exists in PHICOMM K2 PSG1218 versions 22.5.11.5 and earlier. A remote attacker can exploit this vulnerability by sending a request to an ASP script to execute code...

CVE-2017-11495

PHICOMM K2PSG1218 devices V22.5.11.5 and earlier allow unauthenticated remote code execution via a request to an unspecified ASP script; alternatively, the attacker can leverage unauthenticated access to this script to trigger a reboot via an ifType=reboot action...

CVE-2017-11495

PHICOMM K2PSG1218 devices V22.5.11.5 and earlier allow unauthenticated remote code execution via a request to an unspecified ASP script; alternatively, the attacker can leverage unauthenticated access to this script to trigger a reboot via an ifType=reboot action...

CVE-2017-11495

CVE-2017-11495 affects PHICOMM K2 (PSG1218) devices with firmware versions 22.5.11.5 and earlier. Multiple connected sources confirm an unauthenticated remote code execution vulnerability accessible via an unspecified ASP script, with a secondary exploit path where unauthenticated access to that ...