VYPR
Unrated severityNVD Advisory· Published May 16, 2022· Updated Aug 4, 2024

CVE-2021-42897

CVE-2021-42897

Description

A remote command execution (RCE) vulnerability was found in FeMiner wms V1.0 in /wms/src/system/datarec.php. The $_POST[r_name] is directly passed into the $mysqlstr and is executed by exec.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Feminer/wmscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = V1.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.