Arbitrary OS Command Execution in Igreks MilkyStep Light and Professional Versions

Arbitrary OS Command Execution in Igreks MilkyStep Light and Professional Versions

CVE-2015-2955 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Igreks MilkyStep Light 0.94 and earlier and Professional 1.82 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.