Vulnerability CVE-2022-44019
Published: 2022-10-30

Description:
In Total.js 4 before 0e5ace7, /api/common/ping can achieve remote command execution via shell metacharacters in the host parameter.

 References:
https://github.com/totaljs/code/issues/12
Copyright 2026, cxsecurity.com

 

Back to Top