Lucene search
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.PLAYSMS_CVE-2020-8644.NBINHistoryJan 04, 2023 - 12:00 a.m.
PlaySMS < 1.4.3 RCE (CVE-2020-8644)
2023-01-0400:00:00
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
101
playsms
rce
vulnerability
scanner
cve-2020-8644
0.958 High
EPSS
Percentile
99.5%
A remote code execution vulnerability exists in PlaySMS due to insufficient input of user supplied input. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands as the user who owns the PlaySMS process.
Binary data playsms_cve-2020-8644.nbinRelated
packetstorm
packetstorm
PlaySMS index.php Unauthenticated Template Injection Code Execution
2020-04-06 00:00:00
cisa_kev
cisa_kev
PlaySMS Server-Side Template Injection Vulnerability
2021-11-03 00:00:00
zdt
zdt
PlaySMS Unauthenticated Template Injection Code Execution Exploit
2020-04-06 00:00:00
cvelist
cvelist
CVE-2020-8644
2020-02-05 21:03:11
nvd
nvd
CVE-2020-8644
2020-02-05 22:15:11
prion
prion
Design/Logic Flaw
2020-02-05 22:15:00
osv
osv
CVE-2020-8644
2020-02-05 22:15:11
exploitdb
exploitdb
PlaySMS 1.4.3 - Template Injection / Remote Code Execution
2020-03-11 00:00:00
metasploit
metasploit
PlaySMS index.php Unauthenticated Template Injection Code Execution
2020-04-03 14:21:27
attackerkb
attackerkb
CVE-2020-8644
2020-02-05 00:00:00
checkpoint_advisories
checkpoint_advisories
PlaySMS index.php Remote Code Execution (CVE-2020-8644)
2021-11-16 00:00:00
nuclei
nuclei
playSMS <1.4.3 - Remote Code Execution
2022-07-05 20:39:27
cve
cve
CVE-2020-8644
2020-02-05 22:15:11