16 matches found
CVE-2024-34577
Cross-site scripting vulnerability exists in WRC-X3000GS2-B, WRC-X3000GS2-W, WRC-X3000GS2A-B and WRC-X3000GST2-B due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web...
EUVD-2024-34879
Malicious code in bioql PyPI...
EUVD-2023-48130
Malicious code in bioql PyPI...
CVE-2023-43752
OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...
CVE-2024-34577
Cross-site scripting vulnerability exists in WRC-X3000GS2-B, WRC-X3000GS2-W, WRC-X3000GS2A-B and WRC-X3000GST2-B due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web...
CVE-2024-34577
Cross-site scripting vulnerability exists in WRC-X3000GS2-B, WRC-X3000GS2-W, WRC-X3000GS2A-B and WRC-X3000GST2-B due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web...
CVE-2024-34577
CVE-2024-34577 is an XSS vulnerability in ELECOM WRC-X3000GS2-B/W/A-B caused by improper input handling in easysetup.cgi. Affected devices (WRC-X3000GS2-B/W/A-B) are vulnerable when a logged-in user views a malicious page, potentially allowing arbitrary script execution in the user’s browser. Con...
CVE-2024-34577
Cross-site scripting vulnerability exists in WRC-X3000GS2-B, WRC-X3000GS2-W, WRC-X3000GS2A-B and WRC-X3000GST2-B due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web...
PT-2024-25992 · Unknown · Wrc-X3000Gs2A-B +1
Name of the Vulnerable Software and Affected Versions: WRC-X3000GS2-B WRC-X3000GS2-W WRC-X3000GS2A-B Description: A cross-site scripting vulnerability exists due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an...
ELECOM多款产品 跨站脚本漏洞
ELECOM WRC-X3000GS2-W and others are products of ELECOM Corporation.ELECOM WRC-X3000GS2-W is a wireless router.ELECOM WRC-X3000GS2-B is a gigabit router.ELECOM WRC-X3000GS2A-B is a gigabit router. A cross-site scripting vulnerability exists in various ELECOM products, which originates from the...
CVE-2023-43752
OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...
CVE-2023-43752
OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...
Command injection
OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...
CVE-2023-43752
OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...
CVE-2023-43752
CVE-2023-43752 affects ELECOM/related WRC-X3000GS2 devices: W2-W, W2-B, and W2A-B (all v1.05 and earlier). A network‑adjacent authenticated user can execute arbitrary OS commands by sending a specially crafted request, per the CVE description. The reported impact is high (C/H/I/A). Public details...
ELECOM WRC-X3000GS2-W Security Vulnerability
The ELECOM WRC-X3000GS2-W is a wireless router from ELECOM. A security vulnerability exists in the ELECOM WRC-X3000GS2-W that originates from a logged-in user being able to execute arbitrary operating system commands by sending a specially crafted request...