Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The handle_request function in lib/HTTPServer.pm in Monitorix before 3.3.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the URI.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Monitorix 注入漏洞
Vulnerability Description
Monitorix是一套免费的用于监控系统状态的工具。该工具支持自定义设置监控内容,可对CPU和记忆体的使用率、磁碟存取的使用率、网络的使用率等进行分析。 Monitorix 3.3.1之前版本中的lib/HTTPServer.pm文件中的handle_request函数中存在远程命令执行漏洞。远程攻击者可利用该漏洞在应用程序上下文中执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A