blue_ty

CVE-2023-51812 GITEE CRITICAL

Tenda AX3 v16.03.12.11 - Remote Code Execution via SetNetControlList list Parameter

Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList.

CVSS 9.8

View Code

CVE-2023-51154 GITEE CRITICAL

jizhicms v2.5 - Arbitrary File Download via PluginsController.php

Jizhicms v2.5 was discovered to contain an arbitrary file download vulnerability via the component /admin/c/PluginsController.php.

CVSS 9.8

View Code