15 matches found
EUVD-2025-21423
Malicious code in bioql PyPI...
CVE-2025-34103
An unauthenticated command injection vulnerability exists in WePresent WiPG-1000 firmware versions prior to 2.2.3.0, due to improper input handling in the undocumented /cgi-bin/rdfs.cgi endpoint. The Client parameter is not sanitized before being passed to a system call, allowing an unauthenticat...
CVE-2025-34103
An unauthenticated command injection vulnerability exists in WePresent WiPG-1000 firmware versions prior to 2.2.3.0, due to improper input handling in the undocumented /cgi-bin/rdfs.cgi endpoint. The Client parameter is not sanitized before being passed to a system call, allowing an unauthenticat...
CVE-2025-34103 WePresent WiPG-1000 Unauthenticated Command Injection in via rdfs.cgi
An unauthenticated command injection vulnerability exists in WePresent WiPG-1000 firmware versions prior to 2.2.3.0, due to improper input handling in the undocumented /cgi-bin/rdfs.cgi endpoint. The Client parameter is not sanitized before being passed to a system call, allowing an unauthenticat...
CVE-2025-34103 WePresent WiPG-1000 Unauthenticated Command Injection in via rdfs.cgi
An unauthenticated command injection vulnerability exists in WePresent WiPG-1000 firmware versions prior to 2.2.3.0, due to improper input handling in the undocumented /cgi-bin/rdfs.cgi endpoint. The Client parameter is not sanitized before being passed to a system call, allowing an unauthenticat...
CVE-2025-34103
CVE-2025-34103 describes an unauthenticated command injection in WePresent WiPG-1000 firmware prior to 2.2.3.0, caused by improper input handling in the undocumented /cgi-bin/rdfs.cgi endpoint where the Client parameter is not sanitized before a system call. This allows remote attackers to execut...
Barco WePresent WiPG-1000 安全漏洞
Barco WePresent WiPG-1000 is a wireless presentation server from Barco Belgium. A security vulnerability exists in the Barco WePresent WiPG-1000 prior to version 2.2.3.0, which stems from improper handling of /cgi-bin/rdfs.cgi endpoint inputs, which can lead to command injection...
PT-2025-29545 · Wepresent · Wepresent Wipg-1000
Name of the Vulnerable Software and Affected Versions: WePresent WiPG-1000 versions prior to 2.2.3.0 Description: An unauthenticated command injection issue exists due to improper input handling in the /cgi-bin/rdfs.cgi endpoint. The Client parameter is not sanitized before being passed to a syst...
Barco WePresent WiPG 1000 Command Injection
A command injection vulnerability exists in Barco WePresent WiPG 1000. Successful exploitation results in the execution of arbitrary commands on the targeted device...
Mirai Variant Goes After Enterprise Systems
Researchers have discovered a new variant of the infamous Mirai IoT botnet, which has been sniffing out and targeting vulnerabilities in enterprise wireless presentation and display systems since January. Palo Alto Network’s Unit 42 researchers said that the newest variant of Mirai is notably...
Multiple vulnerabilities in WePresent WiPG devices
Security Advisory: Multiple vulnerabilities in WePresent WiPG devices -------------------------------------------------------------------------------- 1. Summary This advisory describes multiple vulnerabilities affecting the WePresent WiPG devices. Most of the issues covered by this advisory appl...
WePresent WiPG-1000 - Command Injection (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'WePresent WiPG-1000 Command Injection', 'Description' = %q This module exploits a command injection vulnerability in an...
WePresent WiPG-1000 Command Injection Exploit
This Metasploit module exploits a command injection vulnerability in an undocumented CGI file in several versions of the WePresent WiPG-1000 devices. Version 2.0.0.7 was confirmed vulnerable, 2.2.3.0 patched this vulnerability. This module requires Metasploit: http://metasploit.com/download Curre...
WePresent WiPG-1000 Command Injection
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'WePresent WiPG-1000 Command Injection', 'Description' = %q This module exploits a command injection vulnerability in an...
wePresent WiPG Multiple Vulnerabilities
wePresent WiPG devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wepresent:wipg";...