A vulnerability, which was classified as critical, has been found in anji-plus AJ-Report up to 1.4.1. This issue affects the function
IGroovyHandler
. The manipulation leads to command injection.
The identification of this vulnerability is CVE-2024-5355. The attack may be initiated remotely. Furthermore, there is an exploit available.