Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
cgi-bin/iptablesgui.cgi in IPCop (aka IPCop Firewall) before 2.1.5 allows remote authenticated users to execute arbitrary code via shell metacharacters in the TABLE parameter. NOTE: this can be exploited remotely by leveraging a separate cross-site scripting (XSS) vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IPCop 代码注入漏洞
Vulnerability Description
IPCop(又名IPCop Firewall)是IPCop团队开发的一款基于Linux平台的防火墙套件,它主要面向家庭和SOHO用户,提供防火墙功能,并可通过一些TCP/IP业务规则对各种信息进行监控和管理。 IPCop 2.1.5之前版本的cgi-bin/iptablesgui.cgi文件中存在安全漏洞。远程攻击者可借助‘TABLE’参数中的shell元字符利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A