VYPR
Unrated severityNVD Advisory· Published Nov 27, 2018· Updated Aug 5, 2024

CVE-2018-13330

CVE-2018-13330

Description

System command injection in ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to execute system commands during group creation via the "groupname" parameter.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.