📦 Captive Portal

by Opennds

🔍 What is Captive Portal?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2023-38316

CRITICAL CVSS 9.8 Nov 17, 2023

CVE-2023-38316 is a command injection vulnerability in OpenNDS Captive Portal that allows attackers to execute arbitrary operating system commands via specially crafted URLs when the custom unescape c...

CVE-2023-38315

HIGH CVSS 7.5 Nov 17, 2023

CVE-2023-38315 is a NULL pointer dereference vulnerability in OpenNDS Captive Portal that allows remote attackers to cause a denial-of-service condition by sending a crafted HTTP GET request with a mi...

CVE-2023-38322

HIGH CVSS 7.5 Nov 17, 2023

This vulnerability in OpenNDS Captive Portal allows remote attackers to cause a denial-of-service by sending a crafted HTTP request with a missing User-Agent header when BinAuth is enabled. The NULL p...