Lucene search
MitreCVELIST:CVE-2020-10220HistoryMar 07, 2020 - 10:37 p.m.
CVE-2020-10220
2020-03-0722:37:43
mitre
www.cve.org
An issue was discovered in rConfig through 3.9.4. The web interface is prone to a SQL injection via the commands.inc.php searchColumn parameter.
References
packetstormsecurity.com/files/156688/rConfig-3.9-SQL-Injection.html
packetstormsecurity.com/files/156766/Rconfig-3.x-Chained-Remote-Code-Execution.html
packetstormsecurity.com/files/156950/rConfig-3.9.4-searchField-Remote-Code-Execution.html
github.com/v1k1ngfr/exploits-rconfig/blob/master/rconfig_CVE-2020-10220.py
github.com/v1k1ngfr/exploits-rconfig/blob/master/rconfig_sqli.py
Related
openvas
openvas
rConfig <= 3.9.4 SQLi Vulnerability
2020-03-09 00:00:00
rConfig < 3.9.5 Multiple Vulnerabilities
2020-03-10 00:00:00
nuclei
nuclei
rConfig 3.9 - SQL Injection
2023-08-31 19:23:15
packetstorm
packetstorm
rConfig 3.9 SQL Injection
2020-03-11 00:00:00
rConfig 3.9.4 searchField Remote Code Execution
2020-03-28 00:00:00
Rconfig 3.x Chained Remote Code Execution
2020-03-16 00:00:00
zdt
zdt
rConfig 3.9 - (searchColumn) SQL Injection Exploit
2020-03-12 00:00:00
Rconfig 3.x Chained Remote Code Execution Exploit
2020-03-17 00:00:00
dsquare
dsquare
rConfig 3.9 SQL Injection
2020-03-03 00:00:00
exploitpack
exploitpack
rConfig 3.9 - searchColumn SQL Injection
2020-03-12 00:00:00
rConfig 3.9.4 - searchField Unauthenticated Root Remote Code Execution
2020-03-27 00:00:00
cve
cve
CVE-2020-10220
2020-03-07 23:15:11
prion
prion
Sql injection
2020-03-07 23:15:00
nvd
nvd
CVE-2020-10220
2020-03-07 23:15:11
exploitdb
exploitdb
rConfig 3.9 - 'searchColumn' SQL Injection
2020-03-12 00:00:00
rConfig 3.9.4 - 'searchField' Unauthenticated Root Remote Code Execution
2020-03-27 00:00:00
Rconfig 3.x - Chained Remote Code Execution (Metasploit)
2020-03-17 00:00:00
attackerkb
attackerkb
metasploit
metasploit
Rconfig 3.x Chained Remote Code Execution
2020-03-12 10:41:12
checkpoint_advisories
checkpoint_advisories