How severe is CVE-2020-25414?

CVE-2020-25414 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-25414

Name: monstra
Author: monstra

9.8CRITICAL

A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.

Publicado: 6/17/2021Atualizado: 11/21/2024

Descrição

A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.

Análise IADesenvolvido por IA

Produtos Afetados

monstramonstra

3.0.4

Referências

https://github.com/monstra-cms/monstra/issues/469
ExploitIssue TrackingThird Party Advisory
https://github.com/monstra-cms/monstra/issues/469
ExploitIssue TrackingThird Party Advisory