CVE-2008-6816
Eaton Network Shutdown Module < 3.1_beta - Authentication Bypass
Title source: ruleDescription
Eaton MGEOPS Network Shutdown Module before 3.10 Build 13 allows remote attackers to execute arbitrary code by adding a custom action to the MGE frontend via pane_actionbutton.php, and then executing this action via exec_action.php.
References (7)
Scores
EPSS
0.1062
EPSS Percentile
93.2%
Classification
CWE
CWE-287
Status
draft
Affected Products (5)
eaton/network_shutdown_module
< 3.1_beta
eaton/network_shutdown_module
eaton/network_shutdown_module
eaton/network_shutdown_module
eaton/network_shutdown_module
Timeline
Published
May 28, 2009
Tracked Since
Feb 18, 2026