CVE-2020-27191
CVE-2020-27191
Vexday Risk Score
18Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
Madurez del exploit
Exploit funcional
Exploit automatizable disponible (Nuclei/Metasploit).
CVSS —EPSS 8.4%KEV nãoPoC —Nuclei simMetasploit —Patch —
Ciclo de vida
16 nov 2020Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted string in the index.php f1 variable, aka Local File Inclusion. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Productos afectados
n/a · n/a