Lucene search
K

37 matches found

Prion
Prion
added 2023/02/03 4:15 p.m.22 views

Command injection

A command injection vulnerability in the serverIp parameter in the function updateWifiInfo of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet...

7.5CVSS9.7AI score0.02109EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/02/03 4:15 p.m.16 views

Command injection

A command injection vulnerability in the serverIp parameter in the function meshSlaveDlfw of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet...

7.5CVSS9.7AI score0.02081EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/02/03 4:15 p.m.21 views

Command injection

A command injection vulnerability in the serverIp parameter in the function meshSlaveUpdate of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet...

7.5CVSS9.7AI score0.02109EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/02/03 12:0 a.m.24 views

CVE-2023-24150

A command injection vulnerability in the serverIp parameter in the function meshSlaveDlfw of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet...

9.9AI score0.02081EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/03 12:0 a.m.6 views

TOTOLINK T8 命令注入漏洞

TOTOLINK T8 is a wireless dual-band router that is mainly used for internet connection and data transmission. TOTOLINK T8 suffers from a command injection vulnerability that stems from the serverIp parameter of the updateWifiInfo method failing to correctly filter constructed command special...

9.8CVSS7.8AI score0.02109EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/02/03 12:0 a.m.31 views

CVE-2023-24157

A command injection vulnerability in the serverIp parameter in the function updateWifiInfo of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet...

9.9AI score0.02109EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/03 12:0 a.m.6 views

TOTOLINK T8 命令注入漏洞

TOTOLINK T8 is a wireless dual-band router that is mainly used for internet connection and data transmission. TOTOLINK T8 suffers from a command injection vulnerability that stems from the serverIp parameter of the meshSlaveUpdate method failing to properly filter construct command special...

9.8CVSS7.8AI score0.02109EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/02/03 12:0 a.m.29 views

CVE-2023-24152

A command injection vulnerability in the serverIp parameter in the function meshSlaveUpdate of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet...

9.9AI score0.02109EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/03 12:0 a.m.6 views

TOTOLINK T8 命令注入漏洞

TOTOLINK T8 is a wireless dual-band router that is mainly used for internet connection and data transmission. The TOTOLINK T8 suffers from a command injection vulnerability that stems from the serverIp parameter of the meshSlaveDlfw method failing to properly filter constructed command special...

9.8CVSS7.8AI score0.02081EPSS
Exploits1References2
OSV
OSV
added 2020/07/28 5:15 p.m.6 views

CVE-2020-15426

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxmigrationcpanel.php. When parsing the serverip parameter, the...

9.8CVSS7.7AI score0.08083EPSS
Exploits0References1
Prion
Prion
added 2020/07/28 5:15 p.m.16 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxmigrationcpanel.php. When parsing the serverip parameter, the...

10CVSS9.6AI score0.08083EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2016/12/30 12:0 a.m.2 views

ZyXEL P660HN-T v2 Router Unauthenticated Remote Command Execution Vulnerability

The ZyXEL P660HN-T v2 is a router manufactured by Hutchinson Technology. The ZyXEL P660HN-T v2 router suffers from an unauthenticated remote command execution vulnerability. Command injection in the ServerIP parameter and the presence of a default account on the device allow an attacker to exploi...

8.3AI score
Exploits0References1
Packet Storm
Packet Storm
added 2011/05/05 12:0 a.m.40 views

SPlayer 3.7 Buffer Overflow

!/usr/bin/python Exploit Title: SPlayer Software Link: http://www.splayer.org/index.en.html Versions: URL ctrl+u ... 3. Input the server URL and Click OK ... 4. Boom!/calc ... Method 2: 1. Execute this script ... 2. Launch SPlayer and click Open ctrl+o ... 3. Browse to any playlist file m3u, pls ...

0.5AI score
Exploits0
seebug.org
seebug.org
added 2008/11/01 12:0 a.m.12 views

cpanel 11.x XSS / Local File Inclusion Vulnerability

No description provided by source. ---------------------------------------------------------------- Script : Cpanel 11.x Type : Local File Inclusion & Cross Site Scripting Risk : High ---------------------------------------------------------------- Discovered by : Khashayar Fereidani I am 17 Year...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2008/11/01 12:0 a.m.49 views

Cpanel 11.x Local File Inclusion & Cross Site Scripting - Discovered By Khashayar Fereidani

---------------------------------------------------------------- Script : Cpanel 11.x Type : Local File Inclusion & Cross Site Scripting Risk : High ---------------------------------------------------------------- Discovered by : Khashayar Fereidani I am 17 Years Old My Official Website :...

6.6AI score
Exploits0
exploitpack
exploitpack
added 2008/10/31 12:0 a.m.12 views

cPanel 11.x - Cross-Site Scripting Local File Inclusion

cPanel 11.x - Cross-Site Scripting Local File Inclusion ---------------------------------------------------------------- Script : Cpanel 11.x Type : Local File Inclusion & Cross Site Scripting Risk : High ---------------------------------------------------------------- Discovered by : Khashayar...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/31 12:0 a.m.36 views

cPanel 11.x - Cross-Site Scripting / Local File Inclusion

---------------------------------------------------------------- Script : Cpanel 11.x Type : Local File Inclusion & Cross Site Scripting Risk : High ---------------------------------------------------------------- Discovered by : Khashayar Fereidani I am 17 Years Old My Official Website :...

7.4AI score
Exploits0
Rows per page
Query Builder