Kyle Lovett (@SquirrelBuddha)

1 exploit Active since Jun 2018
CVE-2018-11510 NOMISEC CRITICAL WORKING POC
ASUSTOR ADM < 3.1.2.rhg1 - Unauthenticated Remote Code Execution via script Parameter
The ASUSTOR ADM 3.1.0.RFQ3 NAS portal suffers from an unauthenticated remote code execution vulnerability in the portal/apis/aggrecate_js.cgi file by embedding OS commands in the 'script' parameter.
CVSS 9.8