Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-29007
HistoryApr 15, 2023 - 12:00 a.m.

CVE-2020-29007

2023-04-1500:00:00
mitre
www.cve.org
1
cve-2020-29007
remote code execution
gnu lilypond
sandboxing
mediawiki
scheme
shell code

AI Score

9.9

Confidence

High

EPSS

0.074

Percentile

94.2%

JSON

The Score extension through 0.3.0 for MediaWiki has a remote code execution vulnerability due to improper sandboxing of the GNU LilyPond executable. This allows any user with an ability to edit articles (potentially including unauthenticated anonymous users) to execute arbitrary Scheme or shell code by using crafted {{Image data to generate musical scores containing malicious code.

Related

prion 1
nvd 1
cve 1
githubexploit 1
prion
prion
Remote code execution
2023-04-15 22:15:00
nvd
nvd
CVE-2020-29007
2023-04-15 22:15:06
cve
cve
CVE-2020-29007
2023-04-15 22:15:06
githubexploit
githubexploit
Exploit for CVE-2020-29007
2020-12-08 13:27:31

AI Score

9.9

Confidence

High

EPSS

0.074

Percentile

94.2%

JSON
Related for CVELIST:CVE-2020-29007
prion1nvd1cve1githubexploit1