8 matches found
The vulnerability in the genie_dyn.cgi script of the Netgear XR300 router’s microprogramming software allows a hacker to execute arbitrary commands.
The vulnerability in the geniedyn.cgi script of the Netgear XR300 router software lies in the lack of measures to neutralize special elements used in the operating system’s command when processing the parameter systemname. Exploiting this vulnerability allows a remote attacker to execute arbitrar...
CVE-2024-52018
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at geniedyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
CVE-2024-51008
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at wizdyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
CVE-2024-52018
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at geniedyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
CVE-2024-52018
CVE-2024-52018 affects Netgear XR300 v1.0.3.78. A command-injection vulnerability exists in the genie_dyn.cgi endpoint through the system_name parameter, allowing an attacker to execute arbitrary OS commands via a crafted request. From the provided documents, the CVSS v3.1 base score is 8.0 (HIGH...
CVE-2024-51008
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at wizdyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
CVE-2024-52018
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at geniedyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
DynPG 4.2.0 - Multiple Vulnerabilities
DynPG 4.2.0 - Multiple Vulnerabilities Vulnerability ID: HTB22703 Reference: http://www.htbridge.ch/advisory/lfiindynpg.html Product: DynPG Vendor: dynpg.org http://www.dynpg.org/ Vulnerable Version: 4.2.0 Vendor Notification: 16 November 2010 Vulnerability Type: Local File Inclusion Status: Fixe...