An OS command injection vulnerability has been found on EasyPHP Webserver affecting version 14.1. This vulnerability could allow an attacker to get full access to the system by sending a specially crafted exploit to the /index.php?zone=settings parameter.
References
Link | Resource |
---|---|
https://www.incibe.es/incibe-cert/alerta-temprana/avisos/inyeccion-de-comandos-os-en-easyphp-webserver | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: INCIBE
Published: 2023-09-26T07:51:36.754Z
Updated: 2023-09-26T07:51:36.754Z
Reserved: 2023-07-19T10:34:45.262Z
Link: CVE-2023-3767
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-27T15:18:56.673
Modified: 2023-09-27T19:18:03.020
Link: CVE-2023-3767
JSON object: View
Redhat Information
No data.
CWE