Security Advisory

CVE-2020-37186

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-11 20:37:08

Last updated 2026-03-05 01:28:20

Assigner VulnCheck

State PUBLISHED

Description

Chevereto 3.13.4 Core contains a remote code execution vulnerability that allows attackers to inject malicious code during database configuration installation. Attackers can manipulate the database table prefix parameter to write a PHP shell file and execute arbitrary system commands through a crafted POST request.

← Browse all CVEs View on cve.org ↗