Security Links
Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the `restart_week` POST parameter.
#CWE
CWE

CWE (Common Weakness Enumeration) is a community-developed list of software and hardware weakness types. It serves as a common language, a measuring stick for security tools, and as a baseline for weakness identification, mitigation, and prevention efforts.

https://cwe.mitre.org/index.html
SANS CWE TOP 25 Most Dangerous Software Errors

What Errors Are Included in the Top 25 Software Errors? Computer security training, certification and free resources. We specialize in computer/network security, digital forensics, application security and IT audit.

https://www.sans.org/top25-software-errors/