1Oca
CVE-2023-50094 | reNgine up to 2.0.2 api/tools/waf_detector/ url os command injection
A vulnerability, which was classified as critical, has been found in reNgine up to 2.0.2. Affected by this issue is some unknown functionality of the file api/tools/waf_detector/. The manipulation of the argument url leads to os command injection. This vulnerability is handled as CVE-2023-50094. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.