2 matches found
CVE-2019-16663
creationtimestamp| type| source ---|---|--- 2019-11-03 12:10:08+00:00| published-proof-of-concept| https://t.me/antichat/6953 2019-11-03 13:03:58+00:00| seen| https://t.me/canyoupwnme/6111 2019-11-03 15:07:22+00:00| seen| https://t.me/DC8044Info/458 2024-10-11 21:29:41+00:00|...
CVE-2019-16663
An issue was discovered in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to search.crud.php because the catCommand parameter is passed to the exec function without filtering, which can lead to command execution...