Arbitrary OS Command Execution in PC-EGG pWebManager

Arbitrary OS Command Execution in PC-EGG pWebManager

CVE-2015-7774 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

PC-EGG pWebManager before 3.3.10, and before 2.2.2 for PHP 4.x, allows remote authenticated users to execute arbitrary OS commands by leveraging the editor role.

Learn more about our Web App Pen Testing.