Added: 04/30/2020
CVE: CVE-2020-5847
Unraid is a network-attached storage operating system. It runs a web-based graphical user interface (webGui) written in PHP.
The Unraid webGui uses the PHP **extract**
function to load all GET parameters into the application as variables, allowing a remote user to control any program variable, leading to command execution.
Upgrade to Unraid 6.8.1 or higher.