CVE-2020-10583

The /admin/admapi.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote authenticated attackers to execute arbitrary OS commands on the server as the user running the application. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt