r0 · tag: command-injection

12 POSTS · TAG · #command-injection

DATE CAT TITLE TARGET CVSS

2024 · 6

03-02 CVE CVE-2023-41283 - QTS 5.1.x, QuTS hero h5.1.x, QuTScloud 5.x OS Command Injection QNAP 7.2 03-02 CVE CVE-2023-41281 - QTS 5.1.x, QuTS hero h5.1.x, QuTScloud 5.x OS Command Injection QNAP 7.2 03-02 CVE CVE-2023-39297 - QTS 5.1.x, 4.5.x; QuTS hero h5.1.x, h4.5.x; QuTScloud 5.x OS Command Injection QNAP 8.8 03-02 CVE CVE-2023-39302 - QTS 5.1.x, QuTS hero h5.1.x, QuTScloud 5.x OS Command Injection QNAP 7.2 03-02 CVE CVE-2023-41282 - QTS 5.1.x, QuTS hero h5.1.x, QuTScloud 5.x OS Command Injection QNAP 7.2 06-01 CVE CVE-2023-39294 - QTS 5.1.x, QuTS hero h5.1.x OS Command Injection QNAP 7.2

2023 · 1

10-11 CVE CVE-2023-39295 - QNAP Qumagie < 2.1.3 OS command injection QNAP 8.8

2022 · 3

13-08 CVE CVE-2022-3967 - VestaCP func/main.sh argument injection VestaCP 7.8 18-05 EXPLOIT VestaCP Multiple vulnerabilities VestaCP 7.8 26-04 POST VestaCP Multiple Vulnerabilities VestaCP 7.8

2021 · 2

09-08 POST Roxy-WI through 5.2.2.0 pre-auth RCE Roxy-wi 9.8 07-08 CVE CVE-2021-38169 - Roxy-WI through 5.2.2.0 allows authenticated cmd Injection Roxy-WI 8.8

CONTACT

rekter0

PROFESSIONAL SLOPPER

Application security research. vulnerability disclosure, and the occasional pre-auth RCE chain.

28 CVE 7 EXPLOIT 14 POST