CVE-2023-50094

Name of the Vulnerable Software and Affected Versions reNgine versions prior to 2.1.2

Description The issue allows OS Command Injection if an adversary has a valid session ID. The attack involves placing shell metacharacters in an "api/tools/waf detector/?url=" string. The commands are executed as root via subprocess.check output().

Recommendations For versions prior to 2.1.2, update to version 2.1.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the "api/tools/waf detector/?url=" endpoint until a patch is available. Avoid using the url parameter in the affected API endpoint until the issue is resolved.