CVE-2026-27811 | Roxy-WI 6.1.1.0/6.3.5.0/6.3.6.0/6.3.9.0/8.1.4 Template String /config/compare///show command injection (GHSA-jvmv-cw47-jh77)

A vulnerability classified as critical was found in Roxy-WI 6.1.1.0/6.3.5.0/6.3.6.0/6.3.9.0/8.1.4. Affected by this vulnerability is an unknown functionality of the file /config/compare///show of the component Template String Handler. Such manipulation leads to command injection.

This vulnerability is listed as CVE-2026-27811. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More