An arbitrary file deletion vulnerability in rConfig 3.9.5 has been fixed for 3.9.6. This vulnerability gave attackers the ability to send a crafted request to /lib/ajaxHandlers/ajaxDeleteAllLoggingFiles.php by specifying a path in the path parameter and an extension in the ext parameter and delete all the files with that extension in that path.
References
| Link | Resource |
|---|---|
| https://cwe.mitre.org/data/definitions/36.html | Third Party Advisory |
| https://stark0de.com/2020/08/27/pwning-rconfig-part-one.html | Exploit Third Party Advisory |
| https://cwe.mitre.org/data/definitions/36.html | Third Party Advisory |
| https://stark0de.com/2020/08/27/pwning-rconfig-part-one.html | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 05:17
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://cwe.mitre.org/data/definitions/36.html - Third Party Advisory | |
| References | () https://stark0de.com/2020/08/27/pwning-rconfig-part-one.html - Exploit, Third Party Advisory |
Information
Published : 2021-08-20 19:15
Updated : 2024-11-21 05:17
NVD link : CVE-2020-25359
Mitre link : CVE-2020-25359
CVE.ORG link : CVE-2020-25359
JSON object : View
Products Affected
rconfig
- rconfig
CWE
CWE-862
Missing Authorization