Lucene search
K

6 matches found

attackerkb
attackerkb
added 2021/04/12 12:0 a.m.28 views

CVE-2020-28872

An authorization bypass vulnerability in Monitorr v1.7.6m in Monitorr/assets/config/installation/register.php allows an unauthorized person to create valid credentials. Recent assessments: noraj at June 22, 2021 4:52pm UTC reported: This gives the ability to create an administrator account while...

9.8CVSS3AI score0.03318EPSS
Exploits3References5
nvd
nvd
added 2021/02/10 1:15 a.m.19 views

CVE-2020-28871

Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload...

9.8CVSS0.85785EPSS
Exploits8References5
osv
osv
added 2021/02/10 1:15 a.m.18 views

CVE-2020-28871

Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload...

9.8CVSS7.9AI score0.85785EPSS
Exploits8References5
prion
prion
added 2021/02/10 1:15 a.m.16 views

Design/Logic Flaw

Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload...

7.5CVSS9.7AI score0.85785EPSS
Exploits8References5Affected Software1
attackerkb
attackerkb
added 2021/02/10 12:0 a.m.66 views

CVE-2020-28871

Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload. Recent assessments: noraj at June 22, 2021 4:56pm UTC reported: The uploaded file must have an image magic byte eg. GIF in order to match...

9.8CVSS4.9AI score0.85785EPSS
Exploits8References5
cve
cve
added 2021/02/10 12:0 a.m.238 views

CVE-2020-28871

Monitorr 1.7.6m (and 1.7.7d and below) is affected by an unauthenticated remote code execution due to an insecure file upload via upload.php. An attacker can upload a crafted PHP file to achieve RCE on the server; exploitation is discussed in public advisories and exploit references. Affected pro...

9.8CVSS9.6AI score0.85785EPSS
Exploits8References5Affected Software1
Rows per page
Query Builder