Lucene search
K

4 matches found

NVD
NVD
added 2020/10/06 2:15 p.m.23 views

CVE-2020-25802

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy scripting. This issue affects: Crafter Software Crafter CMS 3.0 versions prior to 3.0.27; 3.1 versions prior to 3.1.7...

9CVSS0.01123EPSS
Exploits0References1
OSV
OSV
added 2020/10/06 2:15 p.m.12 views

CVE-2020-25802

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy scripting. This issue affects: Crafter Software Crafter CMS 3.0 versions prior to 3.0.27; 3.1 versions prior to 3.1.7...

7.2CVSS7AI score
Exploits0References1
Cvelist
Cvelist
added 2020/10/06 2:9 p.m.27 views

CVE-2020-25802 Authenticated attackers with developer privileges in Crafter Studio may execute OS commands via Groovy scripting.

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy scripting. This issue affects: Crafter Software Crafter CMS 3.0 versions prior to 3.0.27; 3.1 versions prior to 3.1.7...

4.2CVSS7AI score0.01123EPSS
Exploits0References1
CVE
CVE
added 2020/10/06 2:9 p.m.61 views

CVE-2020-25802

The vulnerability CVE-2020-25802 affects Crafter CMS Crafter Studio and allows authenticated developers to execute OS commands through Groovy scripting due to improper control of dynamically-managed code resources. Based on the connected advisory, affected versions are Crafter CMS 3.0 prior to 3....

9CVSS5.7AI score0.01123EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder