← volver
CVE-2021-36697

CVE-2021-36697

EPSS 0.4%
With an admin account, the .htaccess file in Artica Pandora FMS <=755 can be overwritten with the File Manager component. The new .htaccess file contains a Rewrite Rule with a type definition. A normal PHP file can be uploaded with this new "file type" and the code can be executed with an HTTP request.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://artica.comhttp://pandora.comhttps://k4m1ll0.com/chained_exploit_htaccess.html