Arbitrary OS Command Execution in Python CGI Scripts in Imperva SecureSphere
CVE-2018-19646 · HIGH Severity
AV:N/AC:L/AU:N/C:C/I:C/A:C
The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitrary OS commands because command-line arguments are mishandled.
Learn more about our Web Application Penetration Testing UK.