Vulnerabilities

CVE-2013-3508

by Fred · 08/05/2013

html/System-Files.php in the System File Overview feature in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands via vectors involving file editing.

Date published : 2013-05-08

http://www.kb.cert.org/vuls/id/345260

https://kb.groundworkopensource.com/display/SUPPORT/SA6.7.0-1+Some+web+components+allow+bypass+of+role+access+controls

Similar

Tags: Cybersecurity Alert