← back
CVE-2020-13124

CVE-2020-13124

EPSS 4.6%
SABnzbd 2.3.9 and 3.0.0Alpha2 has a command injection vulnerability in the web configuration interface that permits an authenticated user to execute arbitrary Python commands on the underlying operating system.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/sabnzbd/sabnzbd/commits/develophttps://github.com/sabnzbd/sabnzbd/security/advisories/GHSA-9x87-96gg-33w2https://sabnzbd.org/downloads