إرسال #607261: D-Link DIR-645 D-Link DIR‑645 A1 Command Injectionالمعلومات

عنوانD-Link DIR-645 D-Link DIR‑645 A1 Command Injection
الوصفD-Link DIR‑645 A1 has a remote arbitrary command execution vulnerability in ssdpcgi This function is sprintf+system, and we can control the parameters, so we can execute any command to perform rce or other malicious attacks.
المصدر⚠️ https://github.com/Thir0th/Thir0th-CVE/blob/main/D-Link%20DIR%E2%80%91645%20A1%20has%20a%20remote%20arbitrary%20command%20execution%20vulnerability%20in%20ssdpcgi.md
المستخدم
 liuchangwei (UID 86561)
ارسال01/07/2025 12:54 PM (10 أشهر منذ)
الاعتدال07/07/2025 10:36 AM (6 days later)
الحالةتمت الموافقة
إدخال VulDB315131 [D-Link DIR-645 حتى 1.05B01 ssdpcgi /htdocs/cgibin ssdpcgi_main تجاوز الصلاحيات]
النقاط17

التالي نظرة عامة السابق