QNAP QVR Client 5.0.0.13230 – ‘QVRService’ Unquoted Service Path
>> AUTHOR: deepcore
QNAP QVR Client 5.0.0.13230 – ‘QVRService’ Unquoted Service Path
rConfig 3.9.6 – ‘path’ Local File Inclusion (Authenticated)
Realtek Wireless LAN Utility 700.1631 – ‘Realtek11nSU’ Unquoted Service Path
eBeam education suite 2.5.0.9 – ‘eBeam Device Service’ Unquoted Service Path
Interactive Suite 3.6 – ‘eBeam Stylus Driver’ Unquoted Service Path
Sonlogger 4.2.3.3 – SuperAdmin Account Creation / Information Disclosure
D-Link DIR-3060 versions 1.11b04 and below suffer from an authenticated command injection vulnerability.
Vembu BDR version 4.2.0.1 U1 suffers from multiple unquoted service path vulnerabilities.
Monitoring System (Dashboard) version 1.0 suffers from multiple remote code execution vulnerabilities that can be leveraged by malicious shells being uploaded.
QCubed versions 3.1.1 and below suffer from a remote SQL injection vulnerability.