8 matches found
CVE-2022-27079
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/setPicListItem...
CVE-2022-27079
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/setPicListItem...
CVE-2022-27079
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/setPicListItem...
CVE-2022-27079
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/setPicListItem...
Command injection
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/setPicListItem...
CVE-2022-27079
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/setPicListItem...
PT-2022-18207 · Tenda · Tenda M3
Name of the Vulnerable Software and Affected Versions: Tenda M3 version 1.10 V1.0.0.124856 Description: A command injection issue was found in the component "/goform/setPicListItem" of the affected software. Recommendations: For version 1.10 V1.0.0.124856, consider restricting access to the...
Tenda M3 命令注入漏洞
Tenda M3 is an access control from Tenda, a Chinese company. Tenda M3 is vulnerable to command injection, which stems from the component /goform/setPicListItem fails to properly filter the construct command special characters, commands, etc., and can be exploited by attackers to cause arbitrary...