A command injection on the /admin/broadcast.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote authenticated attackers to execute arbitrary PHP code on the server as the user running the application.
CPE | Name | Operator | Version |
---|---|---|---|
automatic_device_management | le | 5.0 |