ZeroShell 3.9.5 Command Injection Vulnerability in /cgi-bin/kerbynet IP Parameter

ZeroShell 3.9.5 Command Injection Vulnerability in /cgi-bin/kerbynet IP Parameter

CVE-2021-41738 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

ZeroShell 3.9.5 has a command injection vulnerability in /cgi-bin/kerbynet IP parameter, which may allow an authenticated attacker to execute system commands.

Learn more about our Web Application Penetration Testing UK.