Arbitrary OS Command Execution Vulnerability in PerlSpeak 2.01

Arbitrary OS Command Execution Vulnerability in PerlSpeak 2.01

CVE-2020-10674 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

PerlSpeak through 2.01 allows attackers to execute arbitrary OS commands, as demonstrated by use of system and 2-argument open.

Learn more about our Web Application Penetration Testing UK.