CVE-2008-1325

Multiple directory traversal vulnerabilities in index.php in Uberghey CMS 0.3.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) page_id and (2) language parameters. NOTE: this might be the same issue as CVE-2008-1324.

Publication date: Thu, 13 Mar 2008 19:44:00 +0000

Cyber News related to CVE-2008-1325

CVE-2023-44409 - D-Link DAP-1325 SetSetupWizardStatus Enabled Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-44408 - D-Link DAP-1325 SetAPLanSettings IPAddr Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-44407 - D-Link DAP-1325 SetAPLanSettings Gateway Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-44406 - D-Link DAP-1325 SetAPLanSettings DeviceName Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-44405 - D-Link DAP-1325 get_value_of_key Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is ...
2 months ago Tenable.com

CVE-2023-44404 - D-Link DAP-1325 get_value_from_app Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is ...
2 months ago Tenable.com

CVE-2023-41187 - D-Link DAP-1325 HNAP Missing Authentication Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to ...
2 months ago Tenable.com

CVE-2023-44403 - D-Link DAP-1325 HNAP SetWLanRadioSettings Channel Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41214 - D-Link DAP-1325 setDhcpAssignRangeUpdate lan_ipaddr Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41213 - D-Link DAP-1325 setDhcpAssignRangeUpdate lan_ipaddr Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41212 - D-Link DAP-1325 SetTriggerAPValidate Key Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41211 - D-Link DAP-1325 SetHostIPv6StaticSettings StaticPrefixLength Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 ...
2 months ago Tenable.com

CVE-2023-41210 - D-Link DAP-1325 SetHostIPv6StaticSettings StaticDNS2 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41209 - D-Link DAP-1325 SetHostIPv6StaticSettings StaticDNS1 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41208 - D-Link DAP-1325 SetHostIPv6StaticSettings StaticDefaultGateway Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link ...
2 months ago Tenable.com

CVE-2023-41207 - D-Link DAP-1325 SetHostIPv6StaticSettings StaticAddress Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 ...
2 months ago Tenable.com

CVE-2023-41206 - D-Link DAP-1325 SetHostIPv6Settings IPv6Mode Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41205 - D-Link DAP-1325 SetAPLanSettings SubnetMask Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41204 - D-Link DAP-1325 SetAPLanSettings SecondaryDNS Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41203 - D-Link DAP-1325 SetAPLanSettings PrimaryDNS Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41202 - D-Link DAP-1325 SetAPLanSettings Mode Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication ...
2 months ago Tenable.com

CVE-2023-41201 - D-Link DAP-1325 HNAP SetSetupWizardStatus Enabled Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41200 - D-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticPrefixLength Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 ...
2 months ago Tenable.com

CVE-2023-41199 - D-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticDNS2 Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

CVE-2023-41198 - D-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticDNS1 Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. ...
2 months ago Tenable.com

Latest Cyber News

CVE-2023-24531 - 1 minute ago
CVE-2022-30636 - 1 minute ago
Three Ways to Chill Attacks on Snowflake - 5 hours ago
CVE-2024-4708 - 6 hours ago
CVE-2024-6387 - 6 hours ago
CVE-2024-2199 - 6 hours ago
CVE-2024-3657 - 6 hours ago
CVE-2023-7250 - 6 hours ago
CVE-2024-6453 - 7 hours ago
CVE-2024-24791 - 7 hours ago
Passkey Redaction Attacks Subvert GitHub, Microsoft Authentication - 7 hours ago
5 ChromeOS settings you should change for a more secure Chromebook - 8 hours ago
TechCrunch is part of the Yahoo family of brands - 8 hours ago
CVE-2024-39326 - 8 hours ago
CVE-2024-39325 - 8 hours ago
CVE-2024-39324 - 8 hours ago
CVE-2024-39322 - 8 hours ago
CVE-2022-29622 - 8 hours ago
CVE-2021-42860 - 8 hours ago
Fintech Frenzy: Affirm & Others Emerge as Victims in Evolve Breach - 9 hours ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 6 months ago
Kimsuky - 7 months ago
LogoFAIL - 6 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

CVE-2024-6453 - 7 hours ago
CVE-2024-24791 - 7 hours ago
CVE-2024-4708 - 6 hours ago
Three Ways to Chill Attacks on Snowflake - 5 hours ago
CVE-2024-6452 - 9 hours ago
CVE-2024-39315 - 9 hours ago
CVE-2024-38537 - 9 hours ago
CVE-2023-24531 - 1 minute ago
CVE-2022-30636 - 1 minute ago
CVE-2024-39326 - 8 hours ago
CVE-2024-39325 - 8 hours ago
CVE-2024-39324 - 8 hours ago
CVE-2024-39322 - 8 hours ago
Passkey Redaction Attacks Subvert GitHub, Microsoft Authentication - 7 hours ago
TechCrunch is part of the Yahoo family of brands - 8 hours ago
5 ChromeOS settings you should change for a more secure Chromebook - 8 hours ago
CVE-2024-6381 - 11 hours ago
CVE-2024-39894 - 11 hours ago
CVE-2024-39206 - 11 hours ago
CVE-2024-6341 - 11 hours ago