MagnusBilling 漏洞列表
共找到 11 个与 MagnusBilling 相关的漏洞
📅 加载漏洞趋势中...
-
MagnusBilling存在默认口令 无POC
MagnusBilling存在默认口令,攻击者可以直接登录后台。 -
CVE-2023-30258: MagnusBilling - Unauthenticated Remote Code Execution POC
Command Injection vulnerability in MagnusSolution magnusbilling 6.x and 7.x allows remote attackers to run arbitrary commands via unauthenticated HTTP request. -
CVE-2025-2609: MagnusBilling Login Logs - Cross-Site Scripting POC
Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users to store HTML content in the viewable log component accessible at /mbilling/index.php/logUsers/read" cross-site scripting This vulnerability is associated with program files protected/components/MagnusLog.Php.This issue affects MagnusBilling- through 7.3.0. -
CVE-2025-2610: MagnusBilling Alarm Module - Cross-Site Scripting POC
Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling (Alarm Module modules) allows authenticated stored cross-site scripting. This vulnerability is associated with program files protected/components/MagnusLog.Php.This issue affects MagnusBilling- through 7.3.0. -
CVE-2023-30258: MagnusBilling - Unauthenticated Remote Code Execution POC
Command Injection vulnerability in MagnusSolution magnusbilling 6.x and 7.x allows remote attackers to run arbitrary commands via unauthenticated HTTP request. -
CVE-2025-2609: MagnusBilling Login Logs - Cross-Site Scripting POC
Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling login logging allows unauthenticated users to store HTML content in the viewable log component accessible at /mbilling/index.php/logUsers/read" cross-site scripting This vulnerability is associated with program files protected/components/MagnusLog.Php.This issue affects MagnusBilling- through 7.3.0. -
CVE-2025-2610: MagnusBilling Alarm Module - Cross-Site Scripting POC
Improper neutralization of input during web page generation vulnerability in MagnusSolution MagnusBilling (Alarm Module modules) allows authenticated stored cross-site scripting. This vulnerability is associated with program files protected/components/MagnusLog.Php.This issue affects MagnusBilling- through 7.3.0. -
magnusbilling-default-login: MagnusBilling - Default Login POC
MagnusBilling installs with a default administrative account using the credentials root / magnus. If unchanged, these credentials grant full access to the system, allowing attackers to manage billing data, modify configurations, and potentially execute arbitrary code or commands via exposed interfaces. -
MagnusBilling /mbilling/lib/icepay/icepay.php 命令执行漏洞 (CVE-2023-30258) 无POC
MagnusBilling 是 Asterisk 的免费计费开源软件。MagnuxSolution 6.x 和 7.x 中存在命令注入漏洞允许远程攻击者通过未验证的HTTP请求执行任意命令。攻击者可通过该漏洞在服务器端任意执行代码,写入后门,获取服务器权限,进而控制整个web服务器。 -
MagnusBilling icepay.php CVE-2023-30258命令注入漏洞 无POC
-
MagnusSolution Magnusbilling命令执行漏洞(CVE-2023-30258) 无POC
MagnusSolution Magnusbilling 6.x 和 7.x 中的命令注入漏洞允许远程攻击者通过未经身份验证的 HTTP 请求运行任意命令。