CVE-2022-4257
C-DATA Web Management System contains a vulnerability in the GET Parameter Handler’s cgi-bin/jumpto.php where manipulating the hostname argument leads to argument injection. The issue can be exploited remotely and an exploit has been disclosed publicly. Affected component/file: cgi-bin/jumpto.php...