logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2020-13166

Description

The management tool in MyLittleAdmin 3.8 allows remote attackers to execute arbitrary code because machineKey is hardcoded (the same for all customers' installations) in web.config, and can be used to send serialized ASP code.


Affected Software


CPE Name Name Version
mylittletools:mylittleadmin mylittletools mylittleadmin 3.8

Related