OS Command Injection in Freewill iFIS (aka SMART Trade) 20.01.01.04 via Shell Metacharacters on Report Page

OS Command Injection in Freewill iFIS (aka SMART Trade) 20.01.01.04 via Shell Metacharacters on Report Page

CVE-2023-28614 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Freewill iFIS (aka SMART Trade) 20.01.01.04 allows OS Command Injection via shell metacharacters to a report page.

Learn more about our Web Application Penetration Testing UK.