Intellian Aptus Web 1.24 allows remote malicious users to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
intelliantech aptus web 1.24 |