Test Blog - Cloud WAF

CVE-2024-7366 : SOURCECODESTER TRACKING MONITORING MANAGEMENT SYSTEM 1.0 LOGIN /AJAX.PHP USERNAME SQL INJECTION

Description A vulnerability was found in SourceCodester Tracking Monitoring Management System 1.0. It has been classified as critical. This affects an unknown part of the…

Common Vulnerabilities and Exposures

CVE-2024-7358 : POINT B LTD GETSCREEN AGENT 2.19.6 ON WINDOWS INSTALLATION GETSCREEN.MSI TEMP FILE

Description A vulnerability was found in Point B Ltd Getscreen Agent 2.19.6 on Windows. It has been declared as critical. Affected by this vulnerability is…

Common Vulnerabilities and Exposures

CVE-2024-7357 : D-LINK DIR-600 UP TO 2.18 /SOAP.CGI SOAPCGI_MAIN SERVICE OS COMMAND INJECTION

Description ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-600 up to 2.18. It has been rated as critical. This issue affects…

Common Vulnerabilities and Exposures

CVE-2024-40465 : BEEGO UP TO 2.2.0 FILE.GO GETCACHEFILENAME PRIVILEGE ESCALATION

Description An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the getCacheFileName function in file.go file. References https://gist.github.com/nyxfqq/a5a2fc5147a1b34538e1ac05a3e56910 For…

Common Vulnerabilities and Exposures

CVE-2022-4002 : MOTOROLA Q14 MESH ROUTER PRIOR 1.5.0.16 API REQUEST COMMAND INJECTION

Description A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially crafted API request. References https://en-us.support.motorola.com/app/answers/detail/a_id/176952/~/motorola-q14-mesh-router-vulnerabilities…

Common Vulnerabilities and Exposures

CVE-2024-39607 : ELECOM WRC-X6000XS-G/WRC-X1500GS-B/WRC-X1500GSA-B UP TO 1.11 OS COMMAND INJECTION

Description OS command injection vulnerability exists in ELECOM wireless LAN routers. A specially crafted request may be sent to the affected product by a logged-in…