Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTenableCVELIST:CVE-2020-5776
HistorySep 01, 2020 - 8:34 p.m.

CVE-2020-5776

2020-09-0120:34:52
tenable
www.cve.org
1

AI Score

8.7

Confidence

High

EPSS

0.35

Percentile

97.1%

JSON

Currently, all versions of MAGMI are vulnerable to CSRF due to the lack of CSRF tokens. RCE (via phpcli command) is possible in the event that a CSRF is leveraged against an existing admin session for MAGMI.

CNA Affected

[
  {
    "product": "MAGMI",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "All versions of MAGMI"
      }
    ]
  }
]

Related

nuclei 1
checkpoint_advisories 1
prion 1
github 1
cve 1
osv 1
openvas 1
veracode 1
nvd 1
threatpost 1
nuclei
nuclei
MAGMI - Cross-Site Request Forgery
2020-09-04 13:19:13
checkpoint_advisories
checkpoint_advisories
Magneto MAGMI Remote Code Execution (CVE-2020-5776)
2020-09-15 00:00:00
prion
prion
Cross site request forgery (csrf)
2020-09-01 21:15:00
github
github
Cross-Site Request Forgery in MAGMI
2021-05-06 18:54:41
cve
cve
CVE-2020-5776
2020-09-01 21:15:12
osv
osv
Cross-Site Request Forgery in MAGMI
2021-05-06 18:54:41
openvas
openvas
Magmi (Magento Mass Importer) <= 0.7.24 CSRF Vulnerability
2020-07-02 00:00:00
veracode
veracode
Cross-site Request Forgery (CSRF)
2020-09-02 07:19:19
nvd
nvd
CVE-2020-5776
2020-09-01 21:15:12
threatpost
threatpost
Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws
2020-09-01 20:19:49

AI Score

8.7

Confidence

High

EPSS

0.35

Percentile

97.1%

JSON
Related for CVELIST:CVE-2020-5776
nuclei1checkpoint_advisories1prion1github1cve1osv1openvas1veracode1nvd1threatpost1