Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\Config.php, which can be exploited via the add() method.
References
Link | Resource |
---|---|
https://cwe.mitre.org/data/definitions/96.html | Technical Description |
https://github.com/lolipop1234/XXD/issues/6 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-06T21:33:58
Updated: 2022-07-10T20:18:16
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-21650
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-06T22:15:07.780
Modified: 2022-09-14T20:33:03.393
Link: CVE-2020-21650
JSON object: View
Redhat Information
No data.
CWE