CVE-2020-10221CISA KEV: Actively Exploited

rConfig OS Command Injection Vulnerability

Published Nov 3, 2021·Updated Nov 3, 2021

Description

rConfig lib/ajaxHandlers/ajaxAddTemplate.php contains an OS command injection vulnerability that allows remote attackers to execute OS commands via shell metacharacters in the fileName POST parameter.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free