CVE-2020-10879 Details


Published: 2020-03-23 22:15:00
CVE Author: NIST National Vulnerability Database (NVD)

rConfig before 3.9.5 allows command injection by sending a crafted GET request to lib/crud/search.crud.php since the nodeId parameter is passed directly to the exec function without being escaped.

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)



You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage 141,056 vulnerabilities.