| Titolo | Wifi-soft Wifi-soft UniBox controller Wifi-soft UniBox controller OS Command Injection |
|---|
| Descrizione | The Wifi-soft UniBox controller router product has a critical vulnerability, affected by the command injection vulnerability in /billing/test_accesscodelogin.php. Unauthorized attackers can exploit this vulnerability to execute arbitrary code on the server side, write backdoors, obtain server permissions, and further control the entire router. |
|---|
| Fonte | ⚠️ https://github.com/h0e4a0r1t/h0e4a0r1t.github.io/blob/master/2025/1/Command%20Injection%20Vulnerability%20in%20Wifi-soft%20UniBox%20controller-billing-test_accesscodelogin.pdf |
|---|
| Utente | H0e4a0r1t_-_- (UID 76773) |
|---|
| Sottomissione | 05/06/2025 14:39 (1 Anno fa) |
|---|
| Moderazione | 15/06/2025 11:41 (10 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 312572 [Wifi-soft UniBox Controller fino a 20250506 test_accesscodelogin.php Parola d'ordine escalationi di privilegi] |
|---|
| Punti | 19 |
|---|