← volver
CVE-2020-27191

CVE-2020-27191

EPSS 8.4%
Vexday Risk Score
18Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
Madurez del exploit
Exploit funcional
Exploit automatizable disponible (Nuclei/Metasploit).
CVSS EPSS 8.4%KEV nãoPoC Nuclei simMetasploit Patch
Ciclo de vida
16 nov 2020Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted string in the index.php f1 variable, aka Local File Inclusion. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Productos afectados
n/a · n/a