CVE-2023-3767

Name of the Vulnerable Software and Affected Versions EasyPHP Webserver version 14.1

Description An OS command injection vulnerability has been found in EasyPHP Webserver. This issue could allow an attacker to gain full access to the system by sending a specially crafted exploit to the "/index.php?zone=settings" parameter.

Recommendations For EasyPHP Webserver version 14.1, consider disabling access to the "/index.php?zone=settings" parameter until a patch is available. Restricting access to this parameter can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.