Show filters
772 Total Results
Displaying 11-20 of 772
Sort by:
Attacker Value
Unknown
CVE-2024-13062
Disclosure Date: January 02, 2025 (last updated January 02, 2025)
An unintended entry point vulnerability has been identified in certain router models, which may allow for arbitrary command execution.
Refer to the ' 01/02/2025 ASUS Router AiCloud vulnerability' section on the ASUS Security Advisory for more information.
0
Attacker Value
Unknown
CVE-2024-12912
Disclosure Date: January 02, 2025 (last updated January 02, 2025)
An improper input insertion vulnerability in AiCloud on certain router models may lead to arbitrary command execution.
Refer to the '01/02/2025 ASUS Router AiCloud vulnerability' section on the ASUS Security Advisory for more information.
0
Attacker Value
Unknown
CVE-2024-53285
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in DDNS Record functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2024-53284
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in WiFi Connect Setting functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2024-53283
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Router Port Forward functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2024-53282
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in WiFi Connect MAC Filter functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2024-53281
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Network WOL functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2024-53280
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in network center policy route functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2024-53279
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in file station functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2024-50389
Disclosure Date: December 06, 2024 (last updated December 21, 2024)
A SQL injection vulnerability has been reported to affect QuRouter. If exploited, the vulnerability could allow remote attackers to inject malicious code.
We have already fixed the vulnerability in the following version:
QuRouter 2.4.5.032 and later
0
