A vulnerability classified as critical has been found in D-Link DIR816 (Router Operating System) (the affected version unknown). This affects some unknown functionality of the file /goform/form2userconfig.cgi of the component HTTP Request Parameter Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
D-Link DIR816 HTTP Request Parameter form2userconfig.cgi command injection
- Virtual Patching
- August 25, 2021
- 11:04 am
CVE-2024-9632 : X.ORG X SERVER UP TO 21.1.13 BITMAP_XKBSETCOMPATMAP SYM_INTERPRET HEAP-BASED OVERFLOW
Description A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker
CVE-2024-51568 : PSAUX CYBERPANEL UP TO 2.3.4 FILE MANAGER /FILEMANAGER/UPLOAD PROCESSUTILITIES.OUTPUTEXECUTIONER OS COMMAND INJECTION
Description CyberPanel (aka Cyber Panel) before 2.3.5 allows Command Injection via completePath in the ProcessUtilities.outputExecutioner() sink. There is /filemanager/upload (aka
CVE-2024-8923 : SERVICENOW NOW PLATFORM IMPROPER AUTHENTICATION
Description ServiceNow has addressed an input validation vulnerability that was identified in the Now Platform. This vulnerability could enable an