Limited Black Friday Offer:

Zeroshell 3.9.0 Remote Command Execution Vulnerability CVE-2019-12725 Scanner

Zeroshell 3.9.0 allows remote command execution vulnerability.

Short Info

Level

Critical

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

15 sec

Scan only one

Url

Parent Category

Zeroshell 3.9.0 Remote Command Execution Vulnerability CVE-2019-12725 Scanner Detail

Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exploit this issue by injecting OS commands inside the vulnerable parameters.

http://packetstormsecurity.com/files/160211/ZeroShell-3.9.0-Remote-Command-Execution.html
https://www.tarlogic.com/advisories/zeroshell-rce-root.txt
https://zeroshell.org/blog/