CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-20092

File Upload vulnerability exists in ArticleCMS 1.0 via the image upload feature at /admin by changing the Content-Type to image/jpeg and placing PHP code after the JPEG data, which could let a remote malicious user execute arbitrary PHP code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://github.com/woider/ArticleCMS/issues/8
https://github.com/woider/ArticleCMS/issues/8

Products affected by CVE-2020-20092

Articlecms Project » Articlecms » Version: 1.0

cpe:2.3:a:articlecms_project:articlecms:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-20092

Products

Pricing

Contact Us