Engin Demirbilek

**Name of the Vulnerable Software and Affected Versions** rConfig versions 3.94 and earlier **Description** The issue exists in the lib/ajaxHandlers/ajaxAddTemplate.php component of the rConfig utility for managing network device configurations, due to the lack of measures to neutralize special elements used in operating system commands. This allows a remote attacker to execute arbitrary operating system commands through the `fileName` parameter in a POST request. **Recommendations** For versions 3.94 and earlier, consider disabling the `ajaxAddTemplate.php` component until a patch is available to prevent exploitation. Restrict access to the `fileName` parameter in the POST request to minimize the risk of arbitrary OS command execution.

**Name of the Vulnerable Software and Affected Versions** Artica Pandora FMS version 7.0 **Description** The issue allows remote attackers to execute arbitrary OS commands via shell metacharacters in the "index.php?operation/netflow/nf live view" API endpoint, specifically in the `ip dst`, `dst port`, or `src port` parameters. **Recommendations** For Artica Pandora FMS version 7.0, consider restricting access to the "index.php?operation/netflow/nf live view" API endpoint to minimize the risk of exploitation, and avoid using the `ip dst`, `dst port`, or `src port` parameters until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.