2 matches found
CVE-2023-25759
OS Command Injection in TripleData Reporting Engine in Tripleplay Platform releases prior to Caveman 3.4.0 allows authenticated users to run unprivileged OS level commands via a crafted request payload...
TRIPLEPLAY Caveman 操作系统命令注入漏洞
TRIPLEPLAY Caveman is a commercial software platform for IPTV technology and video streaming from TRIPLEPLAY UK. A security vulnerability exists in TRIPLEPLAY Caveman versions prior to 3.4.0, which can be exploited by an attacker to run unprivileged operating system level commands through a craft...