← Back to CVE List

CVE-2020-13778

Published: 2020-10-19T13:15Z
Last Modified: 2024-11-21T05:01Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
rConfig 3.9.4 and earlier allows authenticated code execution (of system commands) by sending a forged GET request to lib/ajaxHandlers/ajaxAddTemplate.php or lib/ajaxHandlers/ajaxEditTemplate.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt