dst-admin 命令注入漏洞

dst-admin is a web program written in Java by qinming99, an individual developer. A command injection vulnerability exists in dst-admin version 1.5.0, which stems from an unknown function in the file /home/cavesConsole, which can be injected with the parameter command...