OS Command Injection in Packagist microweber/microweber prior to 1.2.11.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/166077/Microweber-1.2.11-Shell-Upload.html | Exploit Third Party Advisory VDB Entry |
https://github.com/microweber/microweber/commit/0a7e5f1d81de884861ca677ee1aaac31f188d632 | Patch Third Party Advisory |
https://huntr.dev/bounties/660c89af-2de5-41bc-aada-9e4e78142db8 | Exploit Patch Third Party Advisory |
https://www.exploit-db.com/exploits/50768 | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2022-02-11 09:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-0557
Mitre link : CVE-2022-0557
CVE.ORG link : CVE-2022-0557
JSON object : View
Products Affected
microweber
- microweber
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')