Smart Trade
1 CVEs
product
Monthly
Freewill iFIS (aka SMART Trade) 20.01.01.04 allows OS Command Injection via shell metacharacters to a report page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Command Injection
Smart Trade
NVD
GitHub
CVSS 3.1
9.8
EPSS
2.3%
EPSS 2%
CVSS 9.8
CRITICAL
Act Now
Freewill iFIS (aka SMART Trade) 20.01.01.04 allows OS Command Injection via shell metacharacters to a report page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Command Injection
Smart Trade
NVD
GitHub