4 matches found
OpenRepeater Command Injection (CVE-2019-25024)
A command injection vulnerability exists in OpenRepeater. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Exploit for OS Command Injection in Alleghenycreative Openrepeater
CVE-2019-25024 OpenRepeater ORP / Unauthenticated Command...
CVE-2019-25024
OpenRepeater ORP before 2.2 allows unauthenticated command injection via shell metacharacters in the functions/ajaxsystem.php postservice parameter...
CVE-2019-25024
OpenRepeater (ORP) prior to 2.2 is affected by an unauthenticated command-injection vulnerability. The issue arises from unsafely handling shell metacharacters in the functions/ajax_system.php post_service parameter, enabling arbitrary command execution on the vulnerable system. Reported across m...