- EPSS 17.65%
- Veröffentlicht 22.06.2020 18:15:11
- Zuletzt bearbeitet 21.11.2024 05:00:46
Artica Proxy before 4.30.000000 Community Edition allows OS command injection via the Netbios name, Server domain name, dhclient_mac, Hostname, or Alias field. NOTE: this may overlap CVE-2020-10818.
CVE-2020-10818
- EPSS 7.56%
- Veröffentlicht 22.03.2020 20:15:11
- Zuletzt bearbeitet 21.11.2024 04:56:08
Artica Proxy 4.26 allows remote command execution for an authenticated user via shell metacharacters in the "Modify the hostname" field.
- EPSS 2.72%
- Veröffentlicht 01.02.2019 09:29:00
- Zuletzt bearbeitet 21.11.2024 04:47:57
Artica Proxy 3.06.200056 allows remote attackers to execute arbitrary commands as root by reading the ressources/settings.inc ldap_admin and ldap_password fields, using these credentials at logon.php, and then entering the commands in the admin.index...
- EPSS 4.57%
- Veröffentlicht 07.12.2017 02:29:13
- Zuletzt bearbeitet 20.04.2025 01:37:25
Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a cross-site scripting (XSS) attack involving the username-form-id parameter to freeradius.users.php.