CVE-2022-44000 Information

Description

An issue was discovered in BACKCLICK Professional 5.9.63. Due to an exposed internal communications interface it is possible to execute arbitrary system commands on the server.

Reference

https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2022-032.txt https://www.syss.de/pentest-blog/vielfaeltige-schwachstellen-in-backclick-professional-syss-2022-026-bis-037