A remote command execution (RCE)... CVE-2021-42897

7.5 AV AC AU C I A
发布: 2022-05-16
修订: 2024-11-21

A remote command execution (RCE) vulnerability was found in FeMiner wms V1.0 in /wms/src/system/datarec.php. The $_POST[r_name] is directly passed into the $mysqlstr and is executed by exec.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息