Description
An issue was discovered in Electerm 1.3.22, allows attackers to execute arbitrary code via unverified request to electerms service.
Remediation
References
https://github.com/electerm/electerm/issues/1686
Related Vulnerabilities
CVE-2020-36649 Vulnerability in maven package org.webjars.bowergithub.mholt:papaparse
CVE-2021-25978 Vulnerability in npm package apostrophe
CVE-2022-21213 Vulnerability in maven package org.webjars.npm:mout
CVE-2023-25572 Vulnerability in npm package react-admin
CVE-2016-0709 Vulnerability in maven package org.apache.portals.jetspeed-2:j2-admin