www/soap/application/MCSoap/Logs.php in MailCleaner Community Edition 2018.08 allows remote attackers to execute arbitrary OS commands.Referenceshttp://packetstormsecurity.com/files/151056/Mailcleaner-Remote-Code-Execution.htmlhttps://pentest.blog/advisory-mailcleaner-community-edition-remote-code-execution/
