[opsview-users] opsview security flaw

Wed, 06 Oct 2010 23:14:51 -0700 

Hello,

My company's security team found a security flaws in opsview. even for 3.9.0

Someone can execute shell command via URL( ex.
http://opsviewurl/cgi-nmis/admin.pl?admin=ping&node=10.10.10.10 | ls -l )

Please fix it.

Thank you.

_______________________________________________
Opsview-users mailing list
[email protected]
http://lists.opsview.org/lists/listinfo/opsview-users

Reply via email to