CVE

CVE-2017-14118 (eonweb)

admin

CVE-2017-14118 (eonweb)

In the EyesOfNetwork web interface (aka eonweb) 5.1-0, moduletool_alltoolsinterface.php does not properly restrict exec calls, which allows remote attackers to execute arbitrary commands via shell metacharacters in the host_list parameter to module/tool_all/select_tool.php.

Source: CVE-2017-14118 (eonweb)

Exit mobile version