33 matches found
EUVD-2023-41446
Malicious code in bioql PyPI...
CVE-2025-48890
WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in miniigd SOAP service. If a remote unauthenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be...
CVE-2025-43879
WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in the telnet function. If a remote unauthenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be execut...
CVE-2025-43879
WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in the telnet function. If a remote unauthenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be execut...
CVE-2025-48890
WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in miniigd SOAP service. If a remote unauthenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be...
CVE-2025-48890
WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in miniigd SOAP service. If a remote unauthenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be...
CVE-2025-43879
WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in the telnet function. If a remote unauthenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be execut...
CVE-2025-43879
WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in the telnet function. If a remote unauthenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be execut...
CVE-2025-43879
CVE-2025-43879 concerns Elecom WRH-733GBK and WRH-733GWH, where the telnet function sustains an OS command injection allowing a remote unauthenticated attacker to execute arbitrary OS commands. Several connected sources corroborate OS command injection in the telnet component for these models, wi...
PT-2025-26695 · Unknown · Wrh-733Gbk +1
Name of the Vulnerable Software and Affected Versions: WRH-733GBK and WRH-733GWH affected versions not specified Description: The issue is related to an improper neutralization of special elements used in an OS command, also known as 'OS Command Injection', in the telnet function. A remote...
Elecom WRH-733GBK和Elecom WRH-733GWH 操作系统命令注入漏洞
The Elecom WRH-733GBK and Elecom WRH-733GWH are both portable routers from Elecom Japan. The Elecom WRH-733GBK and Elecom WRH-733GWH suffer from an operating system command injection vulnerability that stems from improper neutralization of special elements in the miniigd SOAP service, which could...
Elecom WRH-733GBK和Elecom WRH-733GWH 操作系统命令注入漏洞
The Elecom WRH-733GBK and Elecom WRH-733GWH are both portable routers from Elecom Japan. The Elecom WRH-733GBK and Elecom WRH-733GWH suffer from an operating system command injection vulnerability that stems from telnet function command injection leading to arbitrary OS command execution...
PT-2025-26696 · Unknown · Wrh-733Gbk +1
Name of the Vulnerable Software and Affected Versions: WRH-733GBK and WRH-733GWH affected versions not specified Description: The issue is related to an improper neutralization of special elements used in an OS command, also known as 'OS Command Injection', in the miniigd SOAP service. A remote...
CVE-2021-20854
ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a network-adjacent attacker with an administrator privilege to execute arbitrary OS commands via unspecified vectors...
CVE-2021-20856
Cross-site scripting vulnerability in ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...
CVE-2023-37561
Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. Affected products and versions are as follows: WRH-300WH-H v2.12...
CVE-2023-37560
Cross-site scripting vulnerability in WRH-300WH-H v2.12 and earlier, and WTC-300HWH v1.09 and earlier allows a remote unauthenticated attacker to inject an arbitrary script...
CVE-2023-37560
Cross-site scripting vulnerability in WRH-300WH-H v2.12 and earlier, and WTC-300HWH v1.09 and earlier allows a remote unauthenticated attacker to inject an arbitrary script...
CVE-2023-37560
CVE-2023-37560 affects ELECOM WRH-300WH-H v2.12 and earlier and WTC-300HWH v1.09 and earlier. It is a cross-site scripting vulnerability that allows a remote unauthenticated attacker to inject arbitrary script, potentially affecting a user’s logged-in browser session. The available mitigation in ...
PT-2023-26018 · Unknown · Wrh-300Wh-H +1
Name of the Vulnerable Software and Affected Versions: WRH-300WH-H versions 2.12 and earlier WTC-300HWH versions 1.09 and earlier Description: A cross-site scripting issue allows a remote unauthenticated attacker to inject an arbitrary script. Recommendations: For WRH-300WH-H versions 2.12 and...