Soumettre #591363: Tenda AC9 V1.0 V15.03.02.13 Command Injectioninformation

TitreTenda AC9 V1.0 V15.03.02.13 Command Injection
DescriptionThe Tenda AC9 V1.0 V15.03.02.13 firmware has a command injection vulnerability in the formSetIptv function. The Var variable receives the list parameter from a POST request and is later passed to the sub_B0060 function.
La source⚠️ https://candle-throne-f75.notion.site/Tenda-AC9-formSetIptv-209df0aa11858061ae2bcbf83918d034
Utilisateur
 ysnysn (UID 86181)
Soumission06/06/2025 10:43 (il y a 1 Année)
Modérer06/06/2025 22:12 (11 hours later)
StatutAccepté
Entrée VulDB311579 [Tenda AC9 15.03.02.13 POST Request /goform/SetIPTVCfg formSetIptv list élévation de privilèges]
Points14

PrécédentAperçuSuivant

Do you want to use VulDB in your project?

Use the official API to access entries easily!