CVE-2024-39782

Multiple OS command injection vulnerabilities exist in the adm.cgi schreboot functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command...

CVE-2023-3206

A vulnerability classified as problematic was found in Chengdu VEC40G 3.0. Affected by this vulnerability is an unknown functionality of the file /sendorder.cgi?parameter=restart. The manipulation of the argument restart with the input reboot leads to denial of service. The attack can be launched...

PT-2023-23573 · Unknown · Chengdu Vec40G

Name of the Vulnerable Software and Affected Versions: Chengdu VEC40G version 3.0 Description: A problematic issue was found in the software, affecting an unknown functionality of the file "/send order.cgi?parameter=restart". The manipulation of the restart argument with the input reboot leads to...

PT-2020-14534 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version cwp-e17.0.9.8.923 Description: This issue allows remote attackers to execute arbitrary code on affected installations. Authentication is not required to exploit this issue. The flaw exists within the ajax dashboard.ph...