| Titel | Wifi-soft Wifi-soft UniBox controller Wifi-soft UniBox controller OS Command Injection |
|---|
| Beschreibung | The Wifi-soft UniBox controller router product has a critical vulnerability, affected by the command injection vulnerability in /authentication/logout.php. Unauthorized attackers can exploit this vulnerability to execute arbitrary code on the server side, write backdoors, obtain server permissions, and further control the entire router. |
|---|
| Quelle | ⚠️ https://github.com/h0e4a0r1t/h0e4a0r1t.github.io/blob/master/2025/1/Command%20Injection%20Vulnerability%20in%20Wifi-soft%20UniBox%20controller-authentication_logout.pdf |
|---|
| Benutzer | H0e4a0r1t_-_- (UID 76773) |
|---|
| Einreichung | 05.06.2025 09:39 (vor 1 Jahr) |
|---|
| Moderieren | 15.06.2025 11:41 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 312571 [Wifi-soft UniBox Controller bis 20250506 logout.php mac_address erweiterte Rechte] |
|---|
| Punkte | 18 |
|---|