Vulnerability in N/a
CVE-2019-13597
_s_/sprm/_s_/dyn/Player_setScriptFile in Sahi Pro 8.0.0 allows command execution. It allows one to run ".sah" scripts via Sahi Launcher. Also, one can create a new script with an editor. It is possible to execute commands on the server usi…
EPSS: 0.504 (97.9th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.exploit-db.com/exploits/47110 (x_refsource_MISC)
- pentest.com.tr/exploits/Sahi-Pro-v8-x-Unauthenticated-RCE-Exploit-Python.html (x_refsource_MISC)