Lucene search
HistoryJun 20, 2023 - 3:15 p.m.
CVE-2020-21489
cve-2020-21489
feehicms
file upload
remote attacker
arbitrary code
admin-index.php
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.013
Percentile
85.7%
File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component.
Affected configurations
Node
feehifeehicmsMatch2.0.8
References
Related
osv
osv
CVE-2020-21489
2023-06-20 15:15:11
Liufee CMS File Upload vulnerability
2023-06-20 15:31:09
prion
prion
Unrestricted file upload
2023-06-20 15:15:00
cnvd
cnvd
FeehiCMS Arbitrary File Upload Vulnerability (CNVD-2023-58819)
2023-06-28 00:00:00
veracode
veracode
Arbitrary File Upload
2023-06-28 07:25:52
cvelist
cvelist
CVE-2020-21489
2023-06-20 00:00:00
github
github
Liufee CMS File Upload vulnerability
2023-06-20 15:31:09
cve
cve
CVE-2020-21489
2023-06-20 15:15:11
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.013
Percentile
85.7%
Related for NVD:CVE-2020-21489