2 matches found
CVE-2018-1000042
Security Onion Solutions Squert version 1.3.0 through 1.6.7 contains a CWE-78: Improper Neutralization of Special Elements used in an OS Command OS Command Injection vulnerability in .inc/callback.php that can result in execution of OS Commands. This attack appear to be exploitable via Web reques...
CVE-2018-1000042
CVE-2018-1000042 affects Security Onion Solutions Squert versions 1.3.0 through 1.6.7. The vulnerability is CWE-78 (OS Command Injection) in the .inc/callback.php file, allowing execution of OS commands when a web request with payloads in the data or obj parameters is processed by autocat(). The ...