CVE-2016-10043
Radisys MRF Web Panel (SWMS) 9.0.1 is vulnerable to OS command injection via the MSM_MACRO_NAME POST parameter in /swms/ms.cgi. An attacker can use the pipe character (|) to inject arbitrary commands and retrieve output from responses, enabling possible unauthorized command execution, with risks ...