The iSherlock developed by Hgiga has an OS Command Injection vulnerability, allowing

链接： https://github.com/advisories/GHSA-8w6v-23cx-qj29

CVSS 评分： 9.8

参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2025-7451
https://www.twcert.org.tw/en/cp-139-10238-f2bba-2.html
https://www.twcert.org.tw/tw/cp-132-10237-9e0f7-1.html
https://github.com/advisories/GHSA-8w6v-23cx-qj29

描述：

The iSherlock developed by Hgiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server. This vulnerability has already been exploited. Please update immediately.

安全公告

#Github Advisory

The iSherlock developed by Hgiga has an OS Command Injection vulnerability, allowing

http://example.com/2025/07/14/github_4032809211/

作者

lianccc

发布于

2025年7月14日

许可协议

FortiWeb Command Injection Vulnerability 上一篇

Akamai CloudTest XML External Entity (XXE) Injection Vulnerability 下一篇