Code Injection in SofianeHamlaoui/Lockdoor-Framework

Valid
Reported on May 4th 2021

✍️ Description

Multiple Command injection in infogathering file due to unsanitized inputs.

🕵️‍♂️ Proof of Concept

https://drive.google.com/file/d/1a7nNfQYmKwninO4Qz3z6FveDcTVMQiYn/view?usp=sharing

💥 Impact

Command injection at root user level