B16F00T

**Name of the Vulnerable Software and Affected Versions** whapa version 1.59 **Description** The issue concerns command injection via a crafted filename in the HTML reports component. This allows for potential exploitation through manipulated file names. **Recommendations** For whapa version 1.59, consider restricting access to the HTML reports component until a patch is available. As a temporary workaround, avoid using crafted filenames to minimize the risk of command injection.