Unrated severityCISA KEVNVD Advisory· Published Mar 8, 2020· Updated Oct 21, 2025
CVE-2020-10221
CVE-2020-10221
Description
lib/ajaxHandlers/ajaxAddTemplate.php in rConfig through 3.94 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the fileName POST parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- rConfig/rConfigdescription
Patches
Vulnerability mechanics
References
4- packetstormsecurity.com/files/156687/rConfig-3.93-Authenticated-Remote-Code-Execution.htmlmitrex_refsource_MISC
- cwe.mitre.org/data/definitions/78.htmlmitrex_refsource_MISC
- engindemirbilek.github.io/rconfig-3.93-rcemitrex_refsource_MISC
- github.com/EnginDemirbilek/EnginDemirbilek.github.io/blob/master/rconfig-3.93-rce.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.