CVE-2023-49254
CVE-2023-49254 describes authenticated command execution in the context of the root user via the destination field of network test tools. The initial description notes a mitigation from CVE-2021-28151 (UI-level blacklisting of characters) that is bypassable via direct POST requests, indicating a ...