CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-20907

MetInfo 7.0 beta is affected by a file modification vulnerability. Attackers can delete and modify ini files in app/system/language/admin/language_general.class.php and app/system/include/function/file.func.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.4%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

https://cwe.mitre.org/data/definitions/23.html
https://github.com/cby234/cve_request/issues/1
https://github.com/cby234/cve_request/issues/2
https://cwe.mitre.org/data/definitions/23.html
https://github.com/cby234/cve_request/issues/1
https://github.com/cby234/cve_request/issues/2

Products affected by CVE-2020-20907

Metinfo » Metinfo » Version: 7.0.0

cpe:2.3:a:metinfo:metinfo:7.0.0
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-20907

Products

Pricing

Contact Us