Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
luci vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-50614
An issue discovereed in EBYTE E880-IR01-V1.1 allows an malicious user to obtain sensitive information via crafted POST request to /cgi-bin/luci.
Cdebyte E880-ir01 Firmware 1.1
NA
CVE-2023-51384
In ssh-agent in OpenSSH prior to 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multi...
Openbsd Openssh
1 Github repository
NA
CVE-2023-51385
In ssh in OpenSSH prior to 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters ...
Openbsd Openssh
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
14 Github repositories
NA
CVE-2023-48795
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH prior to 9.6 and other products, allows remote malicious users to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may conseque...
Openbsd Openssh
Putty Putty
Filezilla-project Filezilla Client
Microsoft Powershell
Panic Transmit 5
Panic Nova
Roumenpetrov Pkixssh
Winscp Winscp
Bitvise Ssh Client
Bitvise Ssh Server
Lancom-systems Lcos
Lancom-systems Lcos Fx -
Lancom-systems Lcos Lx -
Lancom-systems Lcos Sx 5.20
Lancom-systems Lcos Sx 4.20
Lancom-systems Lanconfig -
Vandyke Securecrt
Libssh Libssh
Net-ssh Net-ssh 7.2.0
Ssh2 Project Ssh2
Proftpd Proftpd
Freebsd Freebsd
8 Github repositories
1 Article
NA
CVE-2023-38902
A command injection vulnerability in RG-EW series home routers and repeaters v.EW_3.0(1)B11P219, RG-NBS and RG-S1930 series switches v.SWITCH_3.0(1)B11P219, RG-EG series business VPN routers v.EG_3.0(1)B11P219, EAP and RAP series wireless access points v.AP_3.0(1)B11P219, and NBC...
Ruijie Rg-ew1200 Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew1200g Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew1200r Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew1300g Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew1800gx Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew3000gx Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew300 Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew300r Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew3200gx Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nb3200-24gt4xs Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs1850gc Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs1850gc V2 Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs2000 Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs2009g-p Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs200 Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs2026g-p Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs2026g Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs226f Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs228f Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs252f Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs3100-24gt4sfp-p Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs3100-24gt4sfp-p V2 Firmware 3.0\\(1\\)b11p219
NA
CVE-2023-34644
Remote code execution vulnerability in Ruijie Networks Product: RG-EW series home routers and repeaters EW_3.0(1)B11P204, RG-NBS and RG-S1930 series switches SWITCH_3.0(1)B11P218, RG-EG series business VPN routers EG_3.0(1)B11P216, EAP and RAP series wireless access points AP_3.0...
Ruijie Rg-ew1200r Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew300 Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew3200gx Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew1200g Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew1800gx Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew300r Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew1200 Firmware 3.0\\(1\\)b11p204
Ruijie Rg-eg3000xe Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105g Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg305gh-p-e Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105g-p Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg3230 Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg1000e Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105g-e Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105gw\\(t\\) Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105gw-x Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg2000ce Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg2100-p Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg209gs Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg310gh-e Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg3000eu Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg210g-p Firmware 3.0\\(1\\)b11p216
NA
CVE-2023-31851
Cudy LT400 1.13.4 is has a cross-site scripting (XSS) vulnerability in /cgi-bin/luci/admin/network/wireless/status via the iface parameter.
Cudy Lt400 Firmware 1.13.4
Cudy Lt400 Firmware 1.15.18
Cudy Lt400 Firmware 1.15.27
1 Github repository
NA
CVE-2023-31853
Cudy LT400 1.13.4 is vulnerable Cross Site Scripting (XSS) in /cgi-bin/luci/admin/network/bandwidth via the icon parameter.
Cudy Lt400 Firmware 1.13.4
1 Github repository
NA
CVE-2023-31852
Cudy LT400 1.13.4 is vulnerable to Cross Site Scripting (XSS) in cgi-bin/luci/admin/network/wireless/config via the iface parameter.
Cuby Lt400 Firmware 1.13.4
1 Github repository
NA
CVE-2023-3085
A vulnerability, which was classified as problematic, has been found in X-WRT luci up to 22.10_b202303061504. This issue affects the function run_action of the file modules/luci-base/ucode/dispatcher.uc of the component 404 Error Template Handler. The manipulation of the argument...
X-wrt Luci
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »