CVE-2010-20059 | iXsystems FreeNAS up to 0.7.2 Web Interface exec_raw.php cmd os command injection (Exploit 16313)

Inserito da Angelo Barbosa | Ago 20, 2025 | CVE

A vulnerability classified as critical was found in iXsystems FreeNAS up to 0.7.2. The affected element is an unknown function of the file exec_raw.php of the component Web Interface. Such manipulation of the argument cmd leads to os command injection.

This vulnerability is referenced as CVE-2010-20059. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2010-20059 | iXsystems FreeNAS up to 0.7.2 Web Interface exec_raw.php cmd os command injection (Exploit 16313)

Post correlati

CVE-2025-52826 | uxper Sala Plugin up to 1.1.3 on WordPress deserialization

CVE-2023-49851 | Square Thumbnails Plugin up to 1.1.0 on WordPress authorization

CVE-2024-3506 | Milestone Systems XProtect VMS up to 13.1a Recording Server buffer overflow

CVE-2024-30118 | HCL Connections 7.0/8.0 information disclosure (KB0114302)