Arbitrary Command Execution Vulnerability in NeDi System File Overview Feature

CVE-2013-3508 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

html/System-Files.php in the System File Overview feature in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands via vectors involving file editing.

Learn more about our User Device Pen Test.