提出 #844116: EDIMAX EW-7478APC EW-7478APC 1.04 OS Command Injection情報

タイトルEDIMAX EW-7478APC EW-7478APC 1.04 OS Command Injection
説明The EDIMAX EW-7478APC 1.04 firmware has a command injection vulnerability in the formStaDrvSetup function. The v71 variables receive the rootAPmac parameters from a POST request. However, since the user can control the input of these variables, the statement system() can cause a command injection.
ソース⚠️ https://lavender-bicycle-a5a.notion.site/EDIMAX-EW-7478APC-formStaDrvSetup-34b53a41781f80a5805cfe72d78b76df
ユーザー
 wxhwxhwxh_mie (UID 66748)
送信2026年05月31日 09:26 (1 月 ago)
モデレーション2026年06月29日 00:29 (29 days later)
ステータス承諾済み
VulDBエントリ374587 [Edimax EW-7478APC 1.04 POST Request /goform/formStaDrvSetup rootAPmac 特権昇格]
ポイント15

Might our Artificial Intelligence support you?

Check our Alexa App!