CVE-2020-13778

Published
View on NVD ↗
CVSS v3
8.8
HIGH
CVSS v2
9
HIGH
Affected
1
PROJECT

Description

rConfig 3.9.4 and earlier allows authenticated code execution (of system commands) by sending a forged GET request to lib/ajaxHandlers/ajaxAddTemplate.php or lib/ajaxHandlers/ajaxEditTemplate.php.

theguly/exploits
theguly/exploits
GitHubGitHub
1