CVE-2019-16701

2019-09-25T16:15:00
ID CVE-2019-16701
Type cve
Reporter cve@mitre.org
Modified 2019-09-25T19:21:00

Description

pfSense through 2.3.4 through 2.4.4-p3 allows Remote Code Injection via a methodCall XML document with a pfsense.exec_php call containing shell metacharacters in a parameter value.