CVE-2017-1000235

I, Librarian version <=4.6 & 4.7 is vulnerable to OS Command Injection in batchimport.php resulting the web server being fully compromised.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:i-librarian:i_librarian:*:*:*:*:*:*:*:*
cpe:2.3:a:i-librarian:i_librarian:4.7:*:*:*:*:*:*:*

Information

Published : 2017-11-16 20:29

Updated : 2017-11-29 11:35


NVD link : CVE-2017-1000235

Mitre link : CVE-2017-1000235


JSON object : View

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Advertisement

dedicated server usa

Products Affected

i-librarian

  • i_librarian