CVE-2023-4310
BeyondTrust PRA and RS versions 23.2.1–23.2.2 contain a command-injection vulnerability exploitable via a malicious HTTP request. An unauthenticated remote attacker can execute arbitrary OS commands in the context of the site user. The issue is fixed in version 23.2.3. Remediation: upgrade to 23....