CVE-2020-13638 · Vexday

CVE-2020-13638

EPSS 76.8%

lib/crud/userprocess.php in rConfig 3.9.x before 3.9.7 has an authentication bypass, leading to administrator account creation. This issue has been fixed in 3.9.7.

Productos afectados

n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://theguly.github.io/2020/09/rconfig-3.9.4-multiple-vulnerabilities/