4 matches found
VulnCheck KEV: CVE-2020-28185
User Enumeration vulnerability in TerraMaster TOS = 4.2.06 allows remote unauthenticated attackers to identify valid users within the system via the username parameter to wizard/initialise.php...
Exploit for Missing Authentication for Critical Function in Terra-Master Terramaster_Operating_System
It is an exploit module for CVE-2022-24990, a TerraMaster TOS Un...
CVE-2018-13418
System command injection in ajaxdata.php in TerraMaster TOS 3.1.03 allows attackers to execute system commands via the "newname" parameter...
CVE-2018-13334
Cross-site scripting in handle.php in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript via the "optionssysname" parameter...