Arbitrary Command Execution Vulnerability in Blamer Versions Prior to 1.0.1

Arbitrary Command Execution Vulnerability in Blamer Versions Prior to 1.0.1

CVE-2019-10807 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Blamer versions prior to 1.0.1 allows execution of arbitrary commands. It is possible to inject arbitrary commands as part of the arguments provided to blamer.

Learn more about our Web Application Penetration Testing UK.