← volver
CVE-2020-24186

CVE-2020-24186

CVSS 10 CRITICALEPSS 94.6%
Vexday Risk Score
85Corregir ahora
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
CVSS 10EPSS 94.6%KEV nãoPoC públicaNuclei simMetasploit simPatch
Ciclo de vida
21 feb 2020Exploit Metasploit disponible
24 ago 2020Publicada en NVD
07 jun 2021PoC pública
Recomendación: Planificar corrección próxima — ya existe PoC pública.
A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthenticated users to upload any type of file, including PHP files via the wmuUploadFiles AJAX action.
CVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:N/S:C/UI:N
Productos afectados
n/a · n/a
PoCs públicas encontradas11
githubgithub.com/hev0x/CVE-2020-24186-wpDiscuz-7.0.4-RCE19githubgithub.com/substing/CVE-2020-24186_reverse_shell_upload13githubgithub.com/Sakura-501/CVE-2020-24186-exploit3githubgithub.com/GazettEl/CVE-2020-241860githubgithub.com/sec-dojo-com/CVE-2020-241860githubgithub.com/meicookies/CVE-2020-241860exploitdbwww.exploit-db.com/exploits/49967no verificadocve_referencepacketstormsecurity.com/files/163012/WordPress-wpDiscuz-7.0.4-Remote-Code-Execution.htmlno verificadocve_referencepacketstormsecurity.com/files/163302/WordPress-wpDiscuz-7.0.4-Shell-Upload.htmlno verificadoexploitdbwww.exploit-db.com/exploits/49962no verificadocve_referencepacketstormsecurity.com/files/162983/WordPress-wpDiscuz-7.0.4-Shell-Upload.htmlno verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://packetstormsecurity.com/files/162983/WordPress-wpDiscuz-7.0.4-Shell-Upload.htmlhttp://packetstormsecurity.com/files/163012/WordPress-wpDiscuz-7.0.4-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/163302/WordPress-wpDiscuz-7.0.4-Shell-Upload.htmlhttps://www.wordfence.com/blog/2020/07/critical-arbitrary-file-upload-vulnerability-patched-in-wpdiscuz-plugin/