1 results (0.002 seconds)

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1

An issue in Eramba Limited Eramba Enterprise and Community edition v.3.19.1 allows a remote attacker to execute arbitrary code via the path parameter in the URL. Eramba version 3.19.1 suffers from a remote command execution vulnerability. • http://eramba.com https://trovent.github.io/security-advisories/TRSA-2303-01/TRSA-2303-01.txt https://trovent.io/security-advisory-2303-01 https://www.eramba.org • CWE-94: Improper Control of Generation of Code ('Code Injection') •