FarLinX X25 Gateway through 2014-09-25 allows command injection via shell metacharacters to sysSaveMonitorData.php, fsx25MonProxy.php, syseditdate.php, iframeupload.php, or sysRestoreX25Cplt.php.
9.8CVSS
9.6AI Score
0.013EPSS
FarLinX X25 Gateway through 2014-09-25 allows directory traversal via the log-handling feature.
5.3CVSS
6.3AI Score
0.001EPSS
FarLinX X25 Gateway through 2014-09-25 allows attackers to write arbitrary data to fsUI.xyz via fsSaveUIPersistence.php.
9.8CVSS
9.3AI Score
0.007EPSS