PT-2023-14576 · Rconfig · Rconfig
Name of the Vulnerable Software and Affected Versions: rConfig version 3.9.7 Description: A SQL injection issue exists in rConfig via "lib/ajaxHandlers/ajaxCompareGetCmdDates.php?command=" which may interact with secure-file-priv. Recommendations: For rConfig version 3.9.7, consider disabling...