Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in the Merlin.PHP component 0.6.6 for Asuswrt-Merlin devices. An attacker can execute arbitrary commands because exec.php has a popen call. NOTE: the vendor indicates that Merlin.PHP is designed only for use on a trusted intranet network, and intentionally allows remote code execution
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Asuswrt-Merlin Merlin.PHP组件输入验证错误漏洞
Vulnerability Description
Asuswrt-Merlin是华硕(ASUS)公司的一款运行在其路由器中的固件。Merlin.PHP是其中的一个基于Web的管理面板组件。 Asuswrt-Merlin Merlin.PHP组件0.6.6版本中存在安全漏洞。远程攻击者可利用该漏洞执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A