CVE-2017-18025

CVE-2017-18025

cgi-bin/drknow.cgi in Innotube ITGuard-Manager 0.0.0.1 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the username field, as demonstrated by a username beginning with "admin|" to use the ‘|’ metacharacter.

Source: CVE-2017-18025

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다