op5 Config Arbitrary Command Execution
Critical Nessus Plugin ID 57578
SynopsisThe remote web server hosts a PHP application that is vulnerable to arbitrary command execution.
DescriptionThe version of op5 Config hosted on the remote web server is earlier than 2.0.3. As such, it contains a flaw on its welcome page that allows a remote, unauthenticated attacker to run arbitrary commands with root privileges simply by enclosing them in backticks in the password field.
SolutionUpgrade op5 Config to version 2.0.3 or later.