There is an OS Command Injection in Mida eFramework up to and including 2.9.0 that allows an malicious user to achieve Remote Code Execution (RCE) with administrative (root) privileges. No authentication is required.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
midasolutions eframework |