Submit #585715: FLIR AX8 <= 1.46 Remote Command Injectioninfo

TitleFLIR AX8 <= 1.46 Remote Command Injection
DescriptionIn FLIR AX8 up to 1.46.16, command injection vulnerability in /usr/www/application/models/subscriptions.php allows attackers to run arbitrary commands via the function subscribe_to_spot()
Source⚠️ https://github.com/YZS17/CVE/blob/main/Command%20injection%20vulnerability%20in%20subscribe_to_spot()%20in%20FLIR%20AX8.md
User
 XU17 (UID 83703)
Submission05/28/2025 03:39 (1 Year ago)
Moderation06/04/2025 22:22 (8 days later)
StatusAccepted
VulDB entry311211 [Teledyne FLIR AX8 up to 1.46.16 Backend subscriptions.php command injection]
Points17

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!