The vulnerability in the wiz_dyn.cgi script of NETGEAR XR300 microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability in the wizdyn.cgi script of NETGEAR XR300 router microprogramming software relates to the failure to take measures to neutralize special elements used in operating system commands when processing the parameter systemname. Exploiting this vulnerability allows a malicious actor to...

NETGEAR XR300 wiz_dyn.cgi component command injection vulnerability

The NETGEAR XR300 is a wireless router from NETGEAR. NETGEAR XR300 version v1.0.3.78 suffers from a command injection vulnerability that stems from the systemname parameter in the wizdyn.cgi component failing to properly filter constructed command special characters, commands, and so on. An...

CVE-2024-51008

Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at wizdyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

CVE-2024-51008

Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at wizdyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

CVE-2024-51008

Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at wizdyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

CVE-2024-51008

Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the systemname parameter at wizdyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...