Description
System command injection in ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to execute system commands via the "checkName" parameter.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-05T09:00:35.131Z
Reserved: 2018-07-05T00:00:00.000Z
Link: CVE-2018-13358
No data.
Status : Modified
Published: 2018-11-27T21:29:00.993
Modified: 2026-06-17T01:39:16.440
Link: CVE-2018-13358
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')