CVE-2021-29393

Publication date

2022-02-04 18:43:34

Family

mitre

State

PUBLISHED

Description

Remote Code Execution in cominput.jsp and comoutput.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote unauthenticated users to inject and execute arbitrary system commands via the unsanitized user-controlled "command" and "commandvalues" parameters.