Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2021-28132
HistoryMar 11, 2021 - 6:33 a.m.

CVE-2021-28132

2021-03-1106:33:40
mitre
www.cve.org
2
cve-2021-28132
migration tool
system.tar.gz
remote code execution
unauthenticated
lucy security awareness software

AI Score

10

Confidence

High

EPSS

0.011

Percentile

84.5%

JSON

LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool (in the Support section) allows upload of .php files within a system.tar.gz file. The .php file becomes accessible with a public/system/static URI.

Related

cve 1
prion 1
nvd 1
cve
cve
CVE-2021-28132
2021-03-11 07:15:12
prion
prion
Remote code execution
2021-03-11 07:15:00
nvd
nvd
CVE-2021-28132
2021-03-11 07:15:12

AI Score

10

Confidence

High

EPSS

0.011

Percentile

84.5%

JSON
Related for CVELIST:CVE-2021-28132
cve1prion1nvd1