CVE-2020-10879 Details

CVE-2020-10879

Published: 2020-03-23 22:15:00
CVE Author: NIST National Vulnerability Database (NVD)
Summary:

rConfig before 3.9.5 allows command injection by sending a crafted GET request to lib/crud/search.crud.php since the nodeId parameter is passed directly to the exec function without being escaped.

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)

CVE-2020-10879

Search

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage 141,056 vulnerabilities.