Observer 0.3.2.1 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in the query parameter to (1) whois.php or (2) netcmd.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
project-observer observer 0.2.3 |
||
project-observer observer 0.2.2 |
||
project-observer observer 0.3.1 |
||
project-observer observer 0.30-pre-1 |
||
project-observer observer 0.1.2 |
||
project-observer observer 0.1.1 |
||
project-observer observer 0.1.0 |
||
project-observer observer 0.2.5 |
||
project-observer observer 0.2.4 |
||
project-observer observer |
||
project-observer observer 0.3.2 |
||
project-observer observer 0.2.1 |
||
project-observer observer 0.2.0 |