CVE-2021-47667

Name of the Vulnerable Software and Affected Versions ZendTo versions 5.24-3 through 6.x before 6.10-7

Description An OS command injection issue in lib/NSSDropoff.php allows unauthenticated remote attackers to execute arbitrary commands via shell metacharacters in the tmp name parameter when dropping off a file via a POST "/dropoff" request.

Recommendations For versions 5.24-3 through 6.x before 6.10-7, update to version 6.10-7 or later to resolve the issue. As a temporary workaround, consider restricting access to the lib/NSSDropoff.php file or disabling the tmp name parameter in the affected API endpoint until a patch is available.