Security Advisory

CVE-2020-26670

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-01 14:13:25

Last updated 2024-08-04 15:56:04

Assigner mitre

State PUBLISHED

Description

A vulnerability has been discovered in BigTree CMS 4.4.10 and earlier which allows an authenticated attacker to execute arbitrary commands through a crafted request sent to the server via the Create a New Setting function.

← Browse all CVEs View on cve.org ↗