Mocodo: >> Mocodo Online Security Vulnerabilities
Mocodo Mocodo Online 4.2.6 and below is vulnerable to Remote Code Execution via /web/rewrite.php.
CVSS Score
9.8
EPSS Score
0.031
Published
2024-05-24
Mocodo Mocodo Online 4.2.6 and below does not properly sanitize the sql_case input field in /web/generate.php, allowing remote attackers to execute arbitrary commands and potentially command injection, leading to remote code execution (RCE) under certain conditions.
CVSS Score
9.8
EPSS Score
0.047
Published
2024-05-24