Critical severity9.8NVD Advisory· Published Feb 5, 2026· Updated Apr 15, 2026
CVE-2020-37123
CVE-2020-37123
Description
Pinger 1.0 contains a remote code execution vulnerability that allows attackers to inject shell commands through the ping and socket parameters. Attackers can exploit the unsanitized input in ping.php to write arbitrary PHP files and execute system commands by appending shell metacharacters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=1.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.