The vulnerability of the `sslvpn_config_mod` function in the `/vpn/vpn_template_style.php` file of the web interface of the Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 software is exploited by attackers to execute arbitrary commands.
The vulnerability of the sslvpnconfigmod function in the /vpn/vpntemplatestyle.php web interface of the Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 routers is related to the failure to eliminate special elements used in commands when processing template and stylenum parameters. Exploiting th...