Vulnerabilities > Sourcefabric > RPI Jukebox Rfid > 2.3.0

DATE CVE VULNERABILITY TITLE RISK
2022-08-30 CVE-2022-36749 OS Command Injection vulnerability in Sourcefabric Rpi-Jukebox-Rfid 2.3.0
RPi-Jukebox-RFID v2.3.0 was discovered to contain a command injection vulnerability via the component /htdocs/utils/Files.php.
network
low complexity
sourcefabric CWE-78
critical
 9.8
9.8