Eaton Network Shutdown Module Arbitrary PHP Code Execution Vulnerability Network Vulnerability

Summary

Eaton Network Shutdown Module is prone to a remote PHP code-execution vulnerability. An attacker can exploit this issue to inject and execute arbitrary malicious PHP code in the context of the webserver process. This may facilitate a compromise of the application and the underlying system other attacks are also possible. Network Shutdown Module 3.21 build 01 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/54161

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

AIOCP 'cp_html2xhtmlbasic.php' Remote File Inclusion Vulnerability
b2ePMS Multiple SQL Injection Vulnerabilities
Apache Solr XML External Entity(XXE) Vulnerability-02 Jan-14
Adobe ColdFusion Authentication Bypass Vulnerability
AlstraSoft AskMe Pro 'forum_answer.php' and 'profile.php' Multiple SQL Injection Vulnerabilities

Take action and discover your vulnerabilities