How severe is CVE-2020-25414?

CVE-2020-25414 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-25414

Name: monstra
Author: monstra

9.8CRITICAL

A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.

게시됨: 6/17/2021업데이트됨: 11/21/2024

설명

A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.

AI 분석AI 기반

영향받는 제품

monstramonstra

3.0.4

참조

https://github.com/monstra-cms/monstra/issues/469
ExploitIssue TrackingThird Party Advisory
https://github.com/monstra-cms/monstra/issues/469
ExploitIssue TrackingThird Party Advisory