Security Advisory

CVE-2021-47903

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-23 16:47:42

Last updated 2026-01-23 21:47:40

Assigner VulnCheck

State PUBLISHED

Description

LiteSpeed Web Server Enterprise 5.4.11 contains an authenticated command injection vulnerability in the external app configuration interface. Authenticated administrators can inject shell commands through the Command parameter in the server configuration, allowing remote code execution via path traversal and bash command injection.

← Browse all CVEs View on cve.org ↗