| शीर्षक | Tenda HG10 US_HG7_HG9_HG10re_300001138_en_xpon Command Injection |
|---|
| विवरण | A a command execution vulnerability exists in the Tenda HG10 AC1200 Dualband Wi-Fi xPON ONT router. The vulnerability is located in the Boa web server’s formSysCmd interface and is related to improper handling of the sysCmd parameter. Because the system fails to apply sufficient input validation and filtering to this user-controllable parameter, an attacker can inject arbitrary system commands through specially crafted requests. |
|---|
| स्रोत | ⚠️ https://github.com/SunnyYANGyaya/cuicuishark-sheep-fishIOT/blob/main/Tenda/HG10/formSysCmd-sysCmd-command.md |
|---|
| उपयोगकर्ता | Abcd1234 (UID 94604) |
|---|
| सबमिशन | 17/01/2026 03:01 PM (3 महीनों पहले) |
|---|
| संयम | 30/01/2026 08:57 AM (13 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 343484 [Tenda HG10 US_HG7_HG9_HG10re_300001138_en_xpon /boaform/formSysCmd system sysCmd अधिकार वृद्धि] |
|---|
| अंक | 19 |
|---|