The vulnerability of the GetFileWithoutZip method in the network infrastructure monitoring system WhatsUp Gold allows a hacker to execute arbitrary code on the server.

The vulnerability of the GetFileWithoutZip method in the WhatsUp Gold network infrastructure monitoring system is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary code ...