Eaton Network Shutdown Module Arbitrary PHP Code Execution Vulnerability Network Vulnerability

Summary

Eaton Network Shutdown Module is prone to a remote PHP code-execution vulnerability. An attacker can exploit this issue to inject and execute arbitrary malicious PHP code in the context of the webserver process. This may facilitate a compromise of the application and the underlying system other attacks are also possible. Network Shutdown Module 3.21 build 01 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/54161

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Avenger's News System Command Execution
AWStats configdir parameter arbitrary cmd exec
AlienVault OSSIM SQL Injection and Remote Code Execution Vulnerabilities
ASP Inline Corporate Calendar SQL injection
Acute Control Panel SQL Injection Vulnerability and Remote File Include Vulnerability

Take action and discover your vulnerabilities