Published: 2015/11/13 Last Updated: 2015/11/13

Information from PC-EGG Co.,Ltd.

Vulnerability ID:JVN#25323093
Title:pWebManager vulnerable to OS command injection
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.

pWebManager version <=3.3.9a and <= 2.2.2a has an OS command injection vulnerability by a logged-in user.
Update it to 3.3.10 or 2.2.2b, otherwise apply the security patch published on 2015-11-10.