Skip to content
Permalink
Browse files Browse the repository at this point in the history
Merge pull request #8 from dchangtw/1.5.0
CVE-2020-7206: Fix php code injection problem
  • Loading branch information
pmschoeller committed Jul 16, 2020
2 parents c2312b9 + ef92865 commit 7617b27
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion action-url/nagios_hpeilo_service_details.php
Expand Up @@ -22,7 +22,7 @@
$ip=$_GET["ip"];
$comm=$_GET["comm"];
$id=$_GET["id"];
$cmd="./nagios_hpeilo_engine -H $ip -C $comm -o $id -J";
$cmd=escapeshellcmd("./nagios_hpeilo_engine -H $ip -C $comm -o $id -J");
$ret = exec($cmd,$output);
echo join("\n",$output);
?>
Expand Down

0 comments on commit 7617b27

Please sign in to comment.