Vulnerabilities > Eonweb Project

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-24	CVE-2017-6087	OS Command Injection vulnerability in Eonweb Project Eonweb EyesOfNetwork ("EON") 5.0 and earlier allows remote authenticated users to execute arbitrary code via shell metacharacters in the selected_events[] parameter in the (1) acknowledge, (2) delete, or (3) ownDisown function in module/monitoring_ged/ged_functions.php or the (4) module parameter to module/index.php. network low complexity eonweb-project CWE-78	6.5

Vulnerabilities > Eonweb Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Eonweb Project"}]}