Security Advisory

CVE-2021-28961

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-21 05:10:19
Last updated 2024-08-03 21:55:12
Assigner mitre
State PUBLISHED

Description

applications/luci-app-ddns/luasrc/model/cbi/ddns/detail.lua in the DDNS package for OpenWrt 19.07 allows remote authenticated users to inject arbitrary commands via POST requests.