High severity7.2NVD Advisory· Published Jun 1, 2020· Updated Jun 17, 2026
CVE-2020-13695
CVE-2020-13695
Description
In QuickBox Community Edition through 2.5.5 and Pro Edition through 2.1.8, the local www-data user has sudo privileges to execute grep as root without a password, which allows an attacker to obtain sensitive information via a grep of a /root/*.db or /etc/shadow file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- QuickBox/Community Editiondescription
- Range: <=2.5.5
- Range: <=2.1.8
Patches
Vulnerability mechanics
References
1- s1gh.sh/cve-2020-13448-quickbox-authenticated-rce/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.