codexlynx/CVE-2019-25024

Releases0

Full exploit code for CVE-2019-25024 an unauthenticated command injection flaw in OpenRepeater.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-25024 ↗	Feb 19, 2021Friday, 19 February 2021, 04:15	9.8 CRITICAL	10 HIGH
OpenRepeater (ORP) before 2.2 allows unauthenticated command injection via shell metacharacters in the functions/ajax_system.php post_service parameter.