| 제목 | Alien Technology ALR-F800 19.10.24.00 and lower OS Command Injection |
|---|
| 설명 | ALR-F800 is a high-performance RFID reader and features Gatescape web interface.
A vulnerability exists in /var/www/cgi-bin/upgrade.cgi. An attacker can execute system commands by crafting a malicious filename. |
|---|
| 원천 | ⚠️ https://github.com/Push3AX/vul/blob/main/Alien%20Technology%20/ALR-F800.md |
|---|
| 사용자 | PushEAX (UID 54708) |
|---|
| 제출 | 2024. 07. 30. AM 03:03 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 08. 07. AM 08:38 (8 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 273859 [Alien Technology ALR-F800 까지 19.10.24.00 File Name upgrade.cgi popen uploadedFile 권한 상승] |
|---|
| 포인트들 | 16 |
|---|