CVE-2020-13778

Опубликовано: 19 окт. 2020

Источник: nvd

CVSS3: 8.8

CVSS2: 9

EPSS Низкий

Описание

rConfig 3.9.4 and earlier allows authenticated code execution (of system commands) by sending a forged GET request to lib/ajaxHandlers/ajaxAddTemplate.php or lib/ajaxHandlers/ajaxEditTemplate.php.

Ссылки

https://cxsecurity.com/issue/WLB-2020100091
Exploit
Third Party Advisory
https://github.com/theguly/exploits/blob/master/CVE-2020-13778.py
Exploit
Third Party Advisory
https://theguly.github.io/2020/09/rconfig-3.9.4-multiple-vulnerabilities/
Exploit
Third Party Advisory
https://cxsecurity.com/issue/WLB-2020100091
Exploit
Third Party Advisory
https://github.com/theguly/exploits/blob/master/CVE-2020-13778.py
Exploit
Third Party Advisory
https://theguly.github.io/2020/09/rconfig-3.9.4-multiple-vulnerabilities/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rconfig:rconfig:*:*:*:*:*:*:*:*

Версия до 3.9.4 (включая)

EPSS

Процентиль: 76%

0.00937

Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-78

Связанные уязвимости

GHSA-5prv-83cx-r2j9