High severity7.2NVD Advisory· Published Apr 4, 2022· Updated Jun 17, 2026
CVE-2020-28062
CVE-2020-28062
Description
An Access Control vulnerability exists in HisiPHP 2.0.11 via special packets that are constructed in $files = Dir::getList($decompath. '/ Upload/Plugins /, which could let a remote malicious user execute arbitrary code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/hisiphp/hisiphp/issues/10nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.