Vulnerabilities

CVE-2017-16666

by Fred · 05/01/2018

Xplico before 1.2.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the name of an uploaded PCAP file. NOTE: this issue can be exploited without authentication by leveraging the user registration feature.

Date published : 2018-01-05

http://blog.securityonion.net/2017/11/security-advisory-for-xplico-120.html

Xpico 1.2.1: Xplico vulnerability

Similar

Tags: Cybersecurity Alert