3 matches found
CVE-2022-31366
An arbitrary file upload vulnerability in the apiImportLabs function in apilabs.php of EVE-NG 2.0.3-112 Community allows attackers to execute arbitrary code via a crafted UNL file...
PT-2022-20718 · Eve-Ng · Eve-Ng
Name of the Vulnerable Software and Affected Versions: EVE-NG version 2.0.3-112 Community Description: The issue is related to an arbitrary file upload vulnerability in the apiImportLabs function within api labs.php. This vulnerability allows attackers to execute arbitrary code by uploading a...
Eve-NG Professional 和 Eve-NG Community 操作系统命令注入漏洞
Eve-NG Professional is a clientless multi-vendor network emulation software. A security vulnerability exists in Eve-NG Professional version 4.0.1-65 and earlier, Eve-NG Community version 2.0.3-112 and earlier, which stems from a command injection vulnerability in the operating system in the...