1 results (0.003 seconds)
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-36255 – Eramba 3.19.1 Remote Command Execution
https://notcve.org/view.php?id=CVE-2023-36255
An issue in Eramba Limited Eramba Enterprise and Community edition v.3.19.1 allows a remote attacker to execute arbitrary code via the path parameter in the URL. Eramba version 3.19.1 suffers from a remote command execution vulnerability. • http://eramba.com https://trovent.github.io/security-advisories/TRSA-2303-01/TRSA-2303-01.txt https://trovent.io/security-advisory-2303-01 https://www.eramba.org • CWE-94: Improper Control of Generation of Code ('Code Injection') •