A command injection on the /admin/broadcast.php script of Invigo Automatic Device Management (ADM) up to and including 5.0 allows remote authenticated malicious users to execute arbitrary PHP code on the server as the user running the application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
invigo automatic device management |