Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Easywall 0.3.1 - Authentication Bypass via Command Injection in /ports-save Endpoint
Vulnerability Description
Easywall 0.3.1 allows authenticated remote command execution via a command injection vulnerability in the /ports-save endpoint that suffers from a parameter injection flaw. Attackers can inject shell metacharacters to execute arbitrary commands on the server.
CVSS Information
N/A
Vulnerability Type
参数注入或修改
Vulnerability Title
Easywall 参数注入漏洞
Vulnerability Description
Easywall是jpylypiw开源的一个防火墙软件。 Easywall 0.3.1版本存在参数注入漏洞,该漏洞源于/ports-save端点存在命令注入,可能导致执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A