Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
LiteSpeed Web Server Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability - CVE-2026-31386 - Vulnerability Database
LiteSpeed Web Server

LiteSpeed Web Server Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability - CVE-2026-31386

High
Reference: CVE-2026-31386
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2026-31386
Title: LiteSpeed Web Server Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
Overview:

OpenLiteSpeed and LSWS Enterprise provided by LiteSpeed Technologies contain an OS command injection vulnerability. An arbitrary OS command may be executed by an attacker with the administrative privilege.