CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Alienform2 Project: Security Vulnerabilities

CVE-2020-10948

Jon Hedley AlienForm2 (typically installed as af.cgi or alienform.cgi) 2.0.2 is vulnerable to Remote Command Execution via eval injection, a different issue than CVE-2002-0934. An unauthenticated, remote attacker can exploit this via a series of crafted requests.

CVSS Score

9.8

EPSS Score

0.181

Published

2020-04-01

Page 1

Vulnerabilities

Vulnerable Software

Alienform2 Project: Security Vulnerabilities

Products

Pricing

Contact Us