Alkalay.Net Multiple Scripts Arbitrary Remote Command Execution Vulnerabilities

Alkalay.Net Multiple Scripts Arbitrary Remote Command Execution Vulnerabilities

Multiple Alkalay.net scripts are prone to arbitrary remote command execution vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input.

An attacker can prefix arbitrary commands with the pipe '|' character and have them executed in the context of the Web server process.