{"uuid": "7c964108-8568-4713-98db-3da86588a749", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-42897", "type": "seen", "source": "https://t.me/cibsecurity/42732", "content": "\u203c CVE-2021-42897 \u203c\n\nA remote command execution (RCE) vulnerability was found in FeMiner wms V1.0 in /wms/src/system/datarec.php. The $_POST[r_name] is directly passed into the $mysqlstr and is executed by exec.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-16T18:26:24.000000Z"}