CVE-2018-5694

CVE: CVE-2018-5694
Published: 2018-01-14T04:29Z
Vendor: fop2
Products: flash_operator_panel
Versions: 2.31.03,
Description Language: en
Description: The callforward module in User Control Panel (UCP) in Nicolas Gudino (aka Asternic) Flash Operator Panel (FOP) 2.31.03 allows remote authenticated users to execute arbitrary commands via the command parameter.
References:
https://www.vulnerability-lab.com/get_content.php?id=1907