CVE-2019-16701 | pfSense up to 2.4.4-p3 pfsense.exec_php Shell Metacharacter os command injection (ID 154587 / EDB-47413)
A vulnerability categorized as critical has been discovered in pfSense up to 2.4.4-p3. Affected by this issue is some unknown functionality of the file pfsense.exec_php. Such manipulation as part of Shell Metacharacter leads to os command injection.
This vulnerability is referenced as CVE-2019-16701. It is possible to launch the attack remotely. Furthermore, an exploit is available.