CVEs-PoC/2013/CVE-2013-10060.md at 8babdbc0f86ff50487ee8a64da39b2f433a34aa1

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-22 18:09:40 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

An authenticated OS command injection vulnerability exists in Netgear routers (tested on the DGN2200B model) firmware versions 1.0.0.36 and prior via the pppoe.cgi endpoint. A remote attacker with valid credentials can execute arbitrary commands via crafted input to the pppoe_username parameter. This flaw allows full compromise of the device and may persist across reboots unless configuration is restored.

POC

Reference

https://www.exploit-db.com/exploits/24513
https://www.exploit-db.com/exploits/24974
https://www.vulncheck.com/advisories/netgear-legacy-routers-rce

Github

No PoCs found on GitHub currently.

1.1 KiB Raw Blame History

CVE-2013-10060

Description

POC

Reference

Github

1.1 KiB

Raw Blame History