Sabnzbd · Sabnzbd · CVE-2020-13124
**Name of the Vulnerable Software and Affected Versions**
SABnzbd versions 2.3.9 through 3.0.0Alpha2
**Description**
The issue allows an authenticated user to execute arbitrary Python commands on the underlying operating system due to a command injection vulnerability in the web configuration interface.
**Recommendations**
For SABnzbd version 2.3.9, update to a version that contains a fix for this issue.
For SABnzbd version 3.0.0Alpha2, update to a version that contains a fix for this issue.