Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A remote code execution (RCE) vulnerability exists in the Pi Camera project, version 1.0, maintained by RECANTHA. The issue arises from improper sanitization of user input passed to the "position" GET parameter in the tilt.php script. An attacker can exploit this by sending crafted input data that includes malicious command sequences, allowing arbitrary commands to be executed on the server with the privileges of the web server user. This vulnerability is exploitable remotely and poses significant risk if the application is exposed to untrusted networks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
camera-pi 安全漏洞
Vulnerability Description
camera-pi是Michael Horne个人开发者的一个相机模块。 camera-pi 1.0版本存在安全漏洞,该漏洞源于tilt.php脚本中对传递给position GET参数的用户输入处理不当,可能导致攻击者通过发送精心构造的包含恶意命令的数据来执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A