Remote Code Execution (RCE)

github.com/patrickhener/goshs is vulnerable to Remote Code Execution (RCE). The vulnerability is due to missing validation of the -c CLI option in the dispatchReadPump function, which allows unauthenticated users to execute arbitrary commands via WebSocket…Read More