CVE-2018-13336

System command injection in ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to execute system commands via the "pwd" parameter during user creation.
Configurations

Configuration 1

cpe:2.3:o:terra-master:terramaster_operating_system:3.1.03:*:*:*:*:*:*:*

Information

Published : 2018-11-27 09:29

Updated : 2019-10-03 12:03


NVD link : CVE-2018-13336

Mitre link : CVE-2018-13336

Products Affected
No products.
CWE