← voltar
CVE-2021-36697

CVE-2021-36697

EPSS 0.4%
With an admin account, the .htaccess file in Artica Pandora FMS <=755 can be overwritten with the File Manager component. The new .htaccess file contains a Rewrite Rule with a type definition. A normal PHP file can be uploaded with this new "file type" and the code can be executed with an HTTP request.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://artica.comhttp://pandora.comhttps://k4m1ll0.com/chained_exploit_htaccess.html