An issue exists in EyesOfNetwork 5.3. An authenticated web user with sufficient privileges could abuse the AutoDiscovery module to run arbitrary OS commands via the /module/module_frame/index.php autodiscovery.php target field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eyesofnetwork eyesofnetwork 5.3-0 |