A Shell Metacharacter Injection vulnerability in result.php in DRK Odenwaldkreis Testerfassung March-2021 allow an attacker with a valid token of a COVID-19 test result to execute shell commands with the permissions of the web server.
CPE | Name | Operator | Version |
---|---|---|---|
testerfassung | eq | 2021.0.3 |