Show filters
28 Total Results
Displaying 21-28 of 28
Sort by:
Attacker Value
Unknown

CVE-2018-13418

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
System command injection in ajaxdata.php in TerraMaster TOS 3.1.03 allows attackers to execute system commands via the "newname" parameter.
0
0
Attacker Value
Unknown

CVE-2018-13353

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
System command injection in ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to execute commands via the "checkport" parameter.
0
0
Attacker Value
Unknown

CVE-2018-13354

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
System command injection in logtable.php in TerraMaster TOS version 3.1.03 allows attackers to execute system commands via the "Event" parameter.
0
0
Attacker Value
Unknown

CVE-2018-13356

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
Incorrect access control on ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to elevate user permissions.
0
0
Attacker Value
Unknown

CVE-2018-13329

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
Cross-site scripting in ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript via the "lines" URL parameter.
0
0
Attacker Value
Unknown

CVE-2018-13337

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
Session Fixation in the web application for TerraMaster TOS version 3.1.03 allows attackers to control users' session cookies via JavaScript.
0
0
Attacker Value
Unknown

CVE-2018-13334

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
Cross-site scripting in handle.php in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript via the "options[sysname]" parameter.
0
0
Attacker Value
Unknown

CVE-2017-9328

Disclosure Date: September 15, 2017 (last updated November 26, 2024)
Shell metacharacter injection vulnerability in /usr/www/include/ajax/GetTest.php in TerraMaster TOS before 3.0.34 leads to remote code execution as root.
0
0
View More Topics  < Previous