Submit #299707: Tenda AC10U v1.0 Firmware V15.03.06.48 command injectioninfo

TitleTenda AC10U v1.0 Firmware V15.03.06.48 command injection
DescriptionThe Tenda AC10U v1.0 Firmware V15.03.06.48 firmware, we discovered a command injection vulnerablility in the usbName parameter in formSetSambaConf function.
Source⚠️ https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC10U/v1.V15.03.06.48/more/formSetSambaConf.md
User
 wxhwxhwxh_miemie (UID 65922)
Submission03/16/2024 11:58 (2 years ago)
Moderation03/23/2024 06:47 (7 days later)
StatusAccepted
VulDB entry257777 [Tenda AC10U 15.03.06.48/15.03.06.49 /goform/setsambacfg formSetSambaConf usbName os command injection]
Points15

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!