| Título | Adslr B-QE2W401 250814-r037c Remote code execution |
|---|
| Descrição | This vulnerability originates from send_order.cgi, where the CGI-ELF retrieves parameters from requests and concatenates them into commands using the sprintf function without any filtering, allowing remote attackers to execute arbitrary commands without authorization through command separators. |
|---|
| Fonte | ⚠️ https://www.notion.so/2a60c75766a88027a6aec07b378332a8 |
|---|
| Utilizador | 2er00ne (UID 91682) |
|---|
| Submissão | 09/11/2025 15h51 (há 7 meses) |
|---|
| Moderação | 30/11/2025 14h58 (21 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 333808 [ADSLR B-QE2W401 250814-r037c /send_order.cgi parameterdel_swifimac Elevação de Privilégios] |
|---|
| Pontos | 15 |
|---|