D-Link DSR-500N up to 1.02 SSH/Telnet /etc/passwd hard-coded credentials

A vulnerability, which was classified as critical, has been found in D-Link DSR-500N up to 1.02 (Router Operating System). Affected by this issue is an unknown part of the file /etc/passwd of the component SSH/Telnet. Addressing this vulnerability is possible by firewalling .

Common Vulnerabilityies and Exposures

Contact us to get started

CVE-2024-45252 : ELSIGHT HALO PRIOR 11.9.4.0 OS COMMAND INJECTION

CVE-2024-45252 : ELSIGHT HALO PRIOR 11.9.4.0 OS COMMAND INJECTION

Description Elsight – CWE-78: Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) References https://www.gov.il/en/Departments/faq/cve_advisories For

CVE-2024-47350 : YITH WOOCOMMERCE AJAX SEARCH PLUGIN UP TO 2.8.0 ON WORDPRESS SQL INJECTION

CVE-2024-47350 : YITH WOOCOMMERCE AJAX SEARCH PLUGIN UP TO 2.8.0 ON WORDPRESS SQL INJECTION

Description Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in YITH YITH WooCommerce Ajax Search

CVE-2024-9560 : ESAFENET CDG V5 CATELOGS;LOGINDOJOJS DELCATELOGS ID SQL INJECTION

CVE-2024-9560 : ESAFENET CDG V5 CATELOGS;LOGINDOJOJS DELCATELOGS ID SQL INJECTION

Description A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this issue is