2017-12-29 22:00:00
redhat
PUBLISHED
The admin terminal in Hawt.io does not require authentication, which allows remote attackers to execute arbitrary commands via the k parameter.