CVE-2020-25287 – Pligg 2.0.3 allows remote authenticated users to execute arbitrary commands because the te …

13 September 2020

Vuln ID: CVE-2020-25287

Published: 2020-09-13 18:15:10Z

Description: Pligg 2.0.3 allows remote authenticated users to execute arbitrary commands because the template editor can edit any file, as demonstrated by an admin/admin_editor.php the_file=..%2Findex.php&open=Open request.

Source: NVD.NIST.GOV

Date:

13 September 2020

Categorie(s):

NVD

Tag(s):

NVD

Organizations struggle to defend against ransomware17 May 2024
Too many ICS assets are exposed to the public internet17 May 2024
New infosec products of the week: May 17, 202417 May 2024
One big problem SOC teams can actually solve with AI17 May 2024
Unpacking XDR: Coverage, stitching, accregation — and the GenAI wildcard17 May 2024