3 matches found
CVE-2021-26752
NeDi 1.9C allows an authenticated user to execute operating system commands in the Nodes Traffic function on the endpoint /Nodes-Traffic.php via the md or ag HTTP GET parameter. This allows an attacker to obtain access to the operating system where NeDi is installed and to all application data...
CVE-2021-26752
NeDi 1.9C allows an authenticated user to execute operating system commands in the Nodes Traffic function on the endpoint /Nodes-Traffic.php via the md or ag HTTP GET parameter. This allows an attacker to obtain access to the operating system where NeDi is installed and to all application data...
CVE-2021-26752
CVE-2021-26752 affects NeDi 1.9C. An authenticated user can perform OS command injection in the Nodes Traffic function via the md or ag HTTP GET parameter on /Nodes-Traffic.php, enabling execution of OS commands and access to the underlying operating system and all application data. Root cause ap...