Unrated severityNVD Advisory· Published May 25, 2020· Updated Aug 4, 2024

CVE-2020-13442

Description

A Remote code execution vulnerability exists in DEXT5Upload in DEXT5 through 2.7.1402870. An attacker can upload a PHP file via dext5handler.jsp handler because the uploaded file is stored under dext5uploadeddata/.

Affected products

DEXT5/DEXT5Uploaddescription
Dext5/Dext5.ocxllm-fuzzy
Range: <=2.7.1402870

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000