Enhancement: vulnerabilities/other/sar2html-rce.yaml by mp

patch-1
MostInterestingBotInTheWorld 2022-05-30 13:19:43 -04:00
parent e37d064294
commit d4543f05a3
1 changed files with 1 additions and 1 deletions

View File

@ -4,7 +4,7 @@ info:
name: sar2html 3.2.1 - Remote Command Injection name: sar2html 3.2.1 - Remote Command Injection
author: gy741 author: gy741
severity: critical severity: critical
description: SAR2HTML could allow a remote attacker to execute arbitrary commands on the system, caused by a command injection flaw in the index.php script. By sending specially-crafted commands, an attacker could exploit this vulnerability to execute arbitrary commands on the system. description: SAR2HTML could allow a remote attacker to execute arbitrary commands on the system via a command injection flaw in the index.php script. By sending specially-crafted commands, an attacker could exploit this vulnerability to execute arbitrary commands on the system.
reference: reference:
- https://www.exploit-db.com/exploits/49344 - https://www.exploit-db.com/exploits/49344
classification: classification: