cgi-cpn/xcoding/prontus_videocut.cgi in AltaVoz Prontus (aka ProntusCMS) up to and including 12.0.3.0 has "Improper Neutralization of Special Elements used in an OS Command," allowing malicious users to execute OS commands via an HTTP GET parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
altavoz prontuscms |