CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mylittletools: >> Mylittleadmin >> 3.8 Security Vulnerabilities

CVE-2020-13166

The management tool in MyLittleAdmin 3.8 allows remote attackers to execute arbitrary code because machineKey is hardcoded (the same for all customers' installations) in web.config, and can be used to send serialized ASP code.

CVSS Score

9.8

EPSS Score

0.774

Published

2020-05-19

Page 1

Vulnerabilities

Vulnerable Software

Mylittletools: >> Mylittleadmin >> 3.8 Security Vulnerabilities

Products

Pricing

Contact Us