3 matches found
TOTOLINK T8 recvSlaveUpgstatus Method Command Injection Vulnerability
TOTOLINK T8 is a wireless dual-band router that is mainly used for internet connection and data transmission. TOTOLINK T8 suffers from a command injection vulnerability that stems from the ip parameter of the recvSlaveUpgstatus method failing to properly filter constructed command special...
EBCMS v1.8.2 SQL Injection Vulnerability in edit,channel,status and delete Methods
EBCMS short for EBCMS is a modular plug-in website management system based on PHP+Mysql. EBCMS v1.8.2 SQL injection vulnerability exists in the edit,channel,status and delete methods. The vulnerability is due to the system id parameter does not filter the data submitted by the user , a remote...
SQL Injection Vulnerability in Hanchao B2B2C Multi-User Mall System status method
Hanchao B2B2C multi-user mall system is a PHP multi-user mall website system source code developed in PHP + MySQL. Hanchao B2B2C multi-user mall system status method SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...