ESF pfSense system_groupmanager.php Command Injection

A command injection vulnerability exists in the web console of the ESF pfSense firewall. The vulnerability is due to a failure on part of the application to properly parse input supplied to the members parameter in the systemgroupmanager.php script...