CVEs Blog | G5 Cyber Security

CVE-2020-20670 – An arbitrary file upload vulnerability in /admin/media/upload of ZKEACMS

An arbitrary file upload vulnerability in /admin/media/upload of ZKEACMS V3.2.0 allows attackers to execute arbitrary code via a crafted HTML file.

 

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-20670

Reference (s):

Exit mobile version