An issue exists in api/includes/systems.php in Unitrends Enterprise Backup prior to 9.0.0. User input is not properly filtered before being sent to a popen function. This allows for remote code execution by sending a specially crafted user variable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
unitrends enterprise backup |