![]() TOTOLink outdoor CPE CP900 V6.3c.566_B20171026 is discovered to contain a command injection vulnerability in the setWebWlanIdx function via the webWlanIdx parameter. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-232242894 This could lead to remote escalation of privilege with no additional execution privileges needed. In parseTrackFragmentRun() of MPEG4Extractor.cpp, there is a possible out of bounds read due to an integer overflow. ![]() The pullit package before 1.4.0 for Node.js allows OS Command Injection because eval is used on an attacker-supplied Git branch name. The identifier VDB-223801 was assigned to this vulnerability. ![]() It is recommended to apply a patch to fix this issue. Affected by this vulnerability is the function interface_disp_page/interface_disp_page of the file read.php. A vulnerability was found in grinnellplans-php up to 3.0.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |