The target parameter in events.php in Pandora FMS 7.0NG 742, 743 and 744 allows remote authenticated users to execute arbitrary OS commands. CVE Link CVE-2020-13851 Exploit Platform Windows Linux Exploit Type Exploits OS Command Injection Known Vulnerabilities Product Name Impact