Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2020-13873
PUBLISHED
More InfoOfficial Page
Assigner-mitre
Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca
View Known Exploited Vulnerability (KEV) details
Published At-12 May, 2021 | 11:42
Updated At-04 Aug, 2024 | 12:32
Rejected At-
▼CVE Numbering Authority (CNA)

A SQL Injection vulnerability in get_topic_info() in sys/CODOF/Forum/Topic.php in Codoforum before 4.9 allows remote attackers (pre-authentication) to bypass the admin page via a leaked password-reset token of the admin. (As an admin, an attacker can upload a PHP shell and execute remote code on the operating system.)

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://community.sonarsource.com/c/announce/stories/23
x_refsource_MISC
https://github.com/SmashITs
x_refsource_MISC
http://codologic.com/forum/
x_refsource_MISC
https://community.sonarsource.com/t/codoforum-4-8-7-critical-code-vulnerabilities-explained/28297
x_refsource_MISC
https://blog.sonarsource.com/codoforum-4.8.7-critical-code-vulnerabilities-explained
x_refsource_MISC
https://twitter.com/sonarsource/status/1300818196090384384
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://community.sonarsource.com/c/announce/stories/23
x_refsource_MISC
x_transferred
https://github.com/SmashITs
x_refsource_MISC
x_transferred
http://codologic.com/forum/
x_refsource_MISC
x_transferred
https://community.sonarsource.com/t/codoforum-4-8-7-critical-code-vulnerabilities-explained/28297
x_refsource_MISC
x_transferred
https://blog.sonarsource.com/codoforum-4.8.7-critical-code-vulnerabilities-explained
x_refsource_MISC
x_transferred
https://twitter.com/sonarsource/status/1300818196090384384
x_refsource_MISC
x_transferred
Details not found