← volver
CVE-2020-22275

CVE-2020-22275

EPSS 2.1%
Easy Registration Forms (ER Forms) Wordpress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands. After that, when the system administrator generates CSV output from the forms information, there is no check on this inputs and the codes are executable.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://cert.ikiu.ac.ir/public-files/news/document/CVE-99/CVE-2020-22275.pdfhttps://filebin.net/30ceikgukh268yyjhttp://uploadboy.com/ty0715vdcii6/886/mp4