winmt/my-vuls

winmt/my-vuls

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Here are the details of my publicable original vulnerabilities reported to CVE (Common Vulnerabilities & Exposures), or exposures to vendors.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-26801 ↗	Mar 26, 2023Sunday, 26 March 2023, 21:15	9.8 CRITICAL	—
LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 were discovered to contain a command injection vulnerability via the mac, time1, and time2 parameters at /goform/set_LimitClient_cfg.
CVE-2023-26802 ↗	Mar 26, 2023Sunday, 26 March 2023, 21:15	9.8 CRITICAL	—
An issue in the component /network_config/nsg_masq.cgi of DCN (Digital China Networks) DCBI-Netlog-LAB v1.0 allows attackers to bypass authentication and execute arbitrary commands via a crafted request.
CVE-2023-27796 ↗	Mar 26, 2023Sunday, 26 March 2023, 21:15	8.8 HIGH	—
RG-EW1200G PRO Wireless Routers EW_3.0(1)B11P204, RG-EW1800GX PRO Wireless Routers EW_3.0(1)B11P204, and RG-EW3200GX PRO Wireless Routers EW_3.0(1)B11P204 were discovered to contain multiple command injection vulnerabilities via the data.ip, data.protocal, data.iface and data.package parameters in the runPackDiagnose function of diagnose.lua.
CVE-2023-26800 ↗	Mar 26, 2023Sunday, 26 March 2023, 21:15	9.8 CRITICAL	—
Ruijie Networks RG-EW1200 Wireless Routers EW_3.0(1)B11P204 was discovered to contain a command injetion vulnerability via the params.path parameter in the upgradeConfirm function.