The vulnerability of the sub_4119A0 function in the microprogramming software of the TOTOLINK X6000R router allows a hacker to execute arbitrary code.

The vulnerability of the sub4119A0 function shttpd in the TOTOLINK X6000R router microprogramming system exists due to the lack of measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the ASUSTOR Data Master operating system, related to the lack of measures taken to clean data at the management level, allows a perpetrator to execute arbitrary commands.

The vulnerability of the ASUSTOR Data Master operating system is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the sub_4119A0 function in the microprogramming software of the TOTOLINK X6000R router allows a hacker to execute arbitrary code.

The vulnerability of the sub4119A0 function shttpd in the TOTOLINK X6000R router microprogramming system exists due to the lack of measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the hedwig.cgi file in the D-LINK GO-RT-AC750 router microprogramming system allows a hacker to execute any command they desire.

The vulnerability of the hedwig.cgi file of the D-LINK GO-RT-AC750 router’s microprogramming system is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the sub_4119A0 function in the microprogramming software of the TOTOLINK X6000R router allows a hacker to execute arbitrary code.

The vulnerability of the sub4119A0 function shttpd in the TOTOLINK X6000R router microprogramming system exists due to the lack of measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the sub_4119A0 function in the microprogramming software of the TOTOLINK X6000R router allows a hacker to execute arbitrary code.

The vulnerability of the sub4119A0 function shttpd in the TOTOLINK X6000R router microprogramming system exists due to the lack of measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the sub_4119A0 function in the microprogramming software of the TOTOLINK X6000R router allows a hacker to execute arbitrary code.

The vulnerability of the sub4119A0 function shttpd in the TOTOLINK X6000R router microprogramming system exists due to the lack of measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

VulnCheck KEV: CVE-2019-8387

MASTER IPCAMERA01 3.3.4.2103 devices allow Remote Command Execution, related to the thttpd component...

The vulnerability of the cstecgi.cgi implementation in TOTOLINK X5000R router microprogramming software allows a perpetrator to execute arbitrary commands.

The vulnerability of the cstecgi.cgi microprogramming system implementation in TOTOLINK X5000R routers is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

The vulnerability of Tenda IP cameras’ microprogramming software is related to improper protection of the alternative path, allowing intruders to execute arbitrary commands.

The vulnerability of Tenda IP cameras’ microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the built-in document editing server Collabora Online – the CODE Server (richdocumentscode) – is related to an incorrect limitation on the path to the restricted access catalog. This allows a malicious user to execute arbitrary commands.

The vulnerability of the built-in document editing server Collabora Online – CODE Server richdocumentcode is related to an incorrect limitation on the path to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to execute arbitrary commands remotely...

Siemens SINEC INS 操作系统命令注入漏洞

SINEC INS Infrastructure Network Services is a web-based application that combines various network services in one tool. This simplifies the installation and management of all network services associated with industrial networks. Siemens SINEC INS suffers from an operating system command injectio...

PT-2023-7685 · Fortinet · Fortiwlm

Name of the Vulnerable Software and Affected Versions: Fortinet FortiWLM versions 8.6.0 through 8.6.5 Description: The issue is related to an improper neutralization of special elements used in an os command, also known as 'os command injection'. This allows an attacker to execute unauthorized co...

PT-2023-7782 · Siemens · Scalance M826-2 Shdsl-Router +12

Name of the Vulnerable Software and Affected Versions: RUGGEDCOM RM1224 LTE4G EU versions prior to V7.2.2 RUGGEDCOM RM1224 LTE4G NAM versions prior to V7.2.2 SCALANCE M804PB versions prior to V7.2.2 SCALANCE M812-1 ADSL-Router versions prior to V7.2.2 SCALANCE M816-1 ADSL-Router versions prior to...

PT-2023-9017 · Tp Link · Eap225 V3 +1

Name of the Vulnerable Software and Affected Versions: Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 version 5.1.0 Build 20220926 Tp-Link N300 Wireless Access Point EAP115 V4 version 5.0.4 Build 20220216 Description: A command execution issue exists in the tddpd enable test mode...

The vulnerability of the SetSmartQoSSettings.php script in D-Link DIR-846 router software allows a hacker to execute arbitrary commands.

The vulnerability of the SetSmartQoSSettings.php script of the D-Link DIR-846 router operating system is related to the restoration of unreliable data in memory due to the failure to eliminate certain elements during the processing of parameters smartqoosexpressdevices and smartqoosnormaldevices...

The vulnerability of the microprogrammed logic controllers Sauter Nova 220, 230, and 106 lies in the absence of authentication for a critical function. This allows attackers to bypass security restrictions and execute arbitrary commands.

The vulnerability of the microprogrammed logic controllers Sauter Nova 220, 230, and 106 lies in the absence of authentication for the critical function. Exploiting this vulnerability allows a remote attacker to bypass security restrictions and execute arbitrary commands...

The vulnerability of the ajax.php implementation of the Courier Management System allows a perpetrator to execute arbitrary commands.

The vulnerability of the ajax.php implementation of the Courier Management System’s courier service management module is related to the lack of protective measures for the SQL query structure when processing the email parameter. Exploiting this vulnerability allows an attacker who operates remote...

The vulnerability of the Telnet protocol implementation in the microprogramming-based wireless Wi-Fi routers Tenda W30E allows a hacker to execute arbitrary commands.

The vulnerability of the Telnet protocol implementation in the microprogramming-based wireless Wi-Fi routers Tenda W30E is related to the lack of measures taken to neutralize special elements during the processing of the /goform/telnet request. Exploiting this vulnerability allows a remote attack...

The vulnerability of the setDeviceInfo() function in Tenda AX9 Wi-Fi routers allows a hacker to execute arbitrary commands.

The vulnerability of the setDeviceInfo function in Tenda AX9 Wi-Fi routers’ microprogramming software is related to the lack of measures taken to protect the SQL query structure when processing the mac parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...