cvedb.io
CVE-2018-5694
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2018-01-14T04:29:00.393 · Last modified 2026-06-17T02:00:36.623

Summary

The callforward module in User Control Panel (UCP) in Nicolas Gudino (aka Asternic) Flash Operator Panel (FOP) 2.31.03 allows remote authenticated users to execute arbitrary commands via the command parameter.

Affected products

fop2 — flash_operator_panel

Does this affect you?

Add your gear to cvedb and we'll alert you only when fop2 ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.