CVE-2021-4466
- EPSS 0.42%
- Veröffentlicht 14.11.2025 22:52:44
- Zuletzt bearbeitet 18.11.2025 14:06:55
IPCop versions up to and including 2.1.9 contain an authenticated remote code execution vulnerability within the web-based administration interface. The email configuration component inserts user-controlled values, including the EMAIL_PW parameter, d...
CVE-2013-7418
- EPSS 3.89%
- Veröffentlicht 02.01.2015 22:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
cgi-bin/iptablesgui.cgi in IPCop (aka IPCop Firewall) before 2.1.5 allows remote authenticated users to execute arbitrary code via shell metacharacters in the TABLE parameter. NOTE: this can be exploited remotely by leveraging a separate cross-site ...
CVE-2013-7417
- EPSS 0.62%
- Veröffentlicht 02.01.2015 19:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in cgi-bin/ipinfo.cgi in IPCop (aka IPCop Firewall) before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING. NOTE: this can be used to bypass the cross-site request fo...