| Название | Adslr NBR1005GPEV2 250814-r037c Remote code execution |
|---|
| Описание | This vulnerability originates from send_order.cgi, where the CGI-ELF retrieves parameters from requests and concatenates them into commands using the sprintf function without any filtering, allowing remote attackers to execute arbitrary commands without authorization through command separators. |
|---|
| Источник | ⚠️ https://www.notion.so/2a60c75766a8801e8e4bdd3be8072d9d |
|---|
| Пользователь | 2er00ne (UID 91682) |
|---|
| Представление | 09.11.2025 16:25 (7 месяцы назад) |
|---|
| Модерация | 30.11.2025 14:58 (21 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 333810 [ADSLR NBR1005GPEV2 250814-r037c /send_order.cgi ap_macfilter_del mac эскалация привилегий] |
|---|
| Баллы | 15 |
|---|