An issue was found in CMSWing project version 1.3.8. Because the log function does not check the log parameter, malicious parameters can execute arbitrary commands.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/arterli/CmsWing/issues/49 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-02-01T17:38:10
Updated: 2024-08-04T14:15:29.065Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-20294
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-02-01T18:15:13.060
Modified: 2024-11-21T05:12:00.317
Link: CVE-2020-20294
Redhat
No data.