{"id":"CVE-2019-16701","details":"pfSense through 2.3.4 through 2.4.4-p3 allows Remote Code Injection via a methodCall XML document with a pfsense.exec_php call containing shell metacharacters in a parameter value.","modified":"2026-04-10T04:15:11.831320Z","published":"2019-09-25T16:15:12.353Z","references":[{"type":"ADVISORY","url":"https://github.com/pfsense/pfsense/commits/master"},{"type":"EVIDENCE","url":"http://packetstormsecurity.com/files/154587/pfSense-2.3.4-2.4.4-p3-Remote-Code-Injection.html"},{"type":"EVIDENCE","url":"https://hackernews.blog/pfsense-2-3-4-2-4-4-p3-remote-code-injection/#more"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/pfsense/pfsense","events":[{"introduced":"db2a45dafdd79cf6c1e620ba41ebcf4487856cf1"},{"fixed":"531aaac17018e117d0d0179d3c8ecfd22b6a6a7c"},{"introduced":"0"},{"last_affected":"531aaac17018e117d0d0179d3c8ecfd22b6a6a7c"},{"introduced":"0"},{"last_affected":"de4e0a799cd0e1e7267ecc67019c7befa362d8d0"},{"introduced":"0"},{"last_affected":"3e552cec671e26b8108db4ff8e2f48009947dc1d"},{"introduced":"0"},{"last_affected":"2bf6d4322622765bd1ce6ca8915ff75890885566"}],"database_specific":{"versions":[{"introduced":"2.3.4"},{"fixed":"2.4.4"},{"introduced":"0"},{"last_affected":"2.4.4-NA"},{"introduced":"0"},{"last_affected":"2.4.4-p1"},{"introduced":"0"},{"last_affected":"2.4.4-p2"},{"introduced":"0"},{"last_affected":"2.4.4-p3"}]}}],"versions":["RELENG_2_2_BETA","Root_RELENG_1_2","v2.4.4","v2.4.4_1","v2.4.4_2","v2.4.4_3","v2.4.4_GS"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16701.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}