Paessler · Prtg Network Monitor · CVE-2020-10374
**Name of the Vulnerable Software and Affected Versions**
Paessler PRTG Network Monitor versions 19.2.50 through 20.1.56
**Description**
The issue allows unauthenticated remote command execution via a crafted POST request or the `what` parameter of the screenshot function in the Contact Support form.
**Recommendations**
For Paessler PRTG Network Monitor versions 19.2.50 through 20.1.56, consider disabling the Contact Support form or restricting access to the screenshot function until a patch is available. Avoid using the `what` parameter in the affected form to minimize the risk of exploitation.