Code Injection Vulnerability in Softnext Technologies Corp.’s SPAM SQR Allows Remote Attackers to Execute Arbitrary Commands

Code Injection Vulnerability in Softnext Technologies Corp.’s SPAM SQR Allows Remote Attackers to Execute Arbitrary Commands

CVE-2023-24835 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Softnext Technologies Corp.’s SPAM SQR has a vulnerability of Code Injection within its specific function. An authenticated remote attacker with administrator privilege can exploit this vulnerability to execute arbitrary system command to perform arbitrary system operation or disrupt service.

Learn more about our Web Application Penetration Testing UK.