漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
PWS Personal Weather Station Dashboard (PWS_Dashboard) LTS December 2020 (2012_lts) allows remote code execution by injecting PHP code into settings.php. Attacks can use the PWS_printfile.php, PWS_frame_text.php, PWS_listfile.php, PWS_winter.php, and PWS_easyweathersetup.php endpoints. A contributing factor is a hardcoded login password of support, which is not documented. (This is not the same as the documented setup password, which is 12345.) The issue was fixed in late 2022.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Personal Weather Station Dashboard 信任管理问题漏洞
Vulnerability Description
Personal Weather Station Dashboard(PWS_Dashboard)是PWS_Dashboard开源的一个数据丰富的天气仪表板。 Personal Weather Station Dashboard存在安全漏洞。攻击者利用该漏洞通过将PHP代码注入到settings.php来执行远程代码。
CVSS Information
N/A
Vulnerability Type
N/A