Security Advisory

CVE-2020-25287

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-13 17:58:18

Last updated 2024-08-04 15:33:05

Assigner mitre

State PUBLISHED

Description

Pligg 2.0.3 allows remote authenticated users to execute arbitrary commands because the template editor can edit any file, as demonstrated by an admin/admin_editor.php the_file=..%2Findex.php&open=Open request.

← Browse all CVEs View on cve.org ↗