CVE-2024-38896 | Wavlink WN551K1 /cgi-bin/nightled.cgi start_hour command injection

Inserito da Angelo Barbosa | Giu 25, 2024 | CVE

A vulnerability was found in Wavlink WN551K1. It has been rated as critical. This issue affects some unknown processing of the file /cgi-bin/nightled.cgi. The manipulation of the argument start_hour leads to command injection.

The identification of this vulnerability is CVE-2024-38896. The attack can only be done within the local network. There is no exploit available.

CVE-2024-38896 | Wavlink WN551K1 /cgi-bin/nightled.cgi start_hour command injection

Post correlati

CVE-2024-2729 | Otter Blocks Plugin up to 2.6.5 on WordPress cross site scripting

CVE-2023-50723 | XWiki Platform Administration Interface neutralization of directives (GHSA-qj86-p74r-7wp5)

CVE-2024-40481 | PHPGurukul Old Age Home Management System 1.0 Contact Us Page /admin/view-enquiry.php message cross site scripting

CVE-2023-6682 | GitLab Community Edition/Enterprise Edition up to 16.9.6/16.10.4/16.11.1 Discord Integrations Chat Message HAndler resource consumption (Issue 434821)