Opmantek · Open-Audit · CVE-2019-16293
**Name of the Vulnerable Software and Affected Versions**
Open-AudIT versions prior to 3.2.0
**Description**
The issue allows an authenticated attacker to execute arbitrary OS commands via a crafted value for a URL field in the Create Discoveries feature.
**Recommendations**
For versions prior to 3.2.0, update to version 3.2.0 or later to resolve the issue.