RSS   Vulnerabilities for 'Alienform2'   RSS

2020-04-01
 
CVE-2020-10948

CWE-74
 

 
Jon Hedley AlienForm2 (typically installed as af.cgi or alienform.cgi) 2.0.2 is vulnerable to Remote Command Execution via eval injection, a different issue than CVE-2002-0934. An unauthenticated, remote attacker can exploit this via a series of crafted requests.

 


Copyright 2020, cxsecurity.com

 

Back to Top