Enviar #753871: ComFast COMFAST CF-E7 V2.6.0.9 Command Injectioninformación

TítuloComFast COMFAST CF-E7 V2.6.0.9 Command Injection
DescripciónA command injection vulnerability has been discovered in the COMFAST CF-E7 V2.6.0.9 Router. Attackers can exploit this vulnerability to execute arbitrary commands by sending malicious HTTP POST packets. The vulnerability is triggered when the request path is /cgi-bin/mbox-config?method=SET&section=ntp_timezone, prompting the user to log in and obtain cookies.
Fuente⚠️ https://github.com/jinhao118/cve/blob/main/ComFast%20Router_3.md
Usuario
 allanp0e (UID 94632)
Sumisión2026-02-07 08:09 (hace 4 meses)
Moderación2026-02-19 18:22 (12 days later)
EstadoAceptado
Entrada de VulDB346948 [Comfast CF-E7 2.6.0.9 webmggnt mbox-config?method=SET§ion=ntp_timezone sub_41ACCC timestr escalada de privilegios]
Puntos19

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!