How severe is CVE-2020-25414?

CVE-2020-25414 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-25414

Name: monstra
Author: monstra

9.8CRITICAL

A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.

Publicado: 6/17/2021Actualizado: 11/21/2024

Descripción

A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.

Análisis IAImpulsado por IA

Productos Afectados

monstramonstra

3.0.4

Referencias

https://github.com/monstra-cms/monstra/issues/469
ExploitIssue TrackingThird Party Advisory
https://github.com/monstra-cms/monstra/issues/469
ExploitIssue TrackingThird Party Advisory