| Titel | LB-LINK LB-LINK AC1900 router V1.0.2 Command Injection |
|---|
| Beschreibung | In the LB-LINK ac1900 router with the firmware version of V1.0.2, there is a command injection vulnerability in the route /goform/set_manpwd, which may lead to remote arbitrary code execution. |
|---|
| Quelle | ⚠️ https://noisy-caravel-a9a.notion.site/LBLINK_AC1900_V1-0-2_-set_manpwd-_-bl_do_system-_CI-179898c94eac81b9bf56c1f64db77e2d?pvs=74 |
|---|
| Benutzer | h0lyduck (UID 81489) |
|---|
| Einreichung | 14.02.2025 11:42 (vor 1 Jahr) |
|---|
| Moderieren | 23.02.2025 07:56 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 296598 [LB-LINK AC1900 Router 1.0.2 /goform/set_manpwd websGetVar routepwd erweiterte Rechte] |
|---|
| Punkte | 14 |
|---|