Published: 12/12/2013 Updated: 18/07/2019

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Eval injection vulnerability in frontview/lib/np_handler.pl in the FrontView web interface in NETGEAR ReadyNAS RAIDiator prior to 4.1.12 and 4.2.x prior to 4.2.24 allows remote malicious users to execute arbitrary Perl code via a crafted request, related to the "forgot password workflow."

Vulnerable Product	Search on Vulmon	Subscribe to Product
netgear raidiator

## # This module requires Metasploit: http//metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = ManualRanking include Msf::Exploit::Remote::HttpClient def initialize(info = {}) super(update_info(info, 'Name' =& ...

CWE-94 http://www.tripwire.com/register/security-advisory-netgear-readynas/http://www.tripwire.com/state-of-security/vulnerability-management/readynas-flaw-allows-root-access-unauthenticated-http-request/http://packetstormsecurity.com/files/123726/Netgear-ReadyNAS-Complete-System-Takeover.html http://www.exploit-db.com/exploits/29815 http://www.osvdb.org/98826 http://www.readynas.com/?p=7002 https://nvd.nist.gov https://www.exploit-db.com/exploits/29815/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-2751

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect