daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: cves/2020/CVE-2020-29227.yaml by mp

patch-1
MostInterestingBotInTheWorld 2022-05-16 15:21:59 -04:00
parent a028a908ee
commit d29eba9e3a
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
cves/2020/CVE-2020-29227.yaml
View File

@ -1,11 +1,10 @@
id: CVE-2020-29227 id: CVE-2020-29227
info: info:
name: Car Rental Management System 1.0 - Local File Inclusion (LFI) name: Car Rental Management System 1.0 - Local File Inclusion
author: daffainfo author: daffainfo
severity: critical severity: critical
description: An issue was discovered in Car Rental Management System 1.0. An unauthenticated user can perform a file inclusion attack against the /index.php file with a partial filename in the "page" parameter, description: Car Rental Management System 1.0 allows an unauthenticated user to perform a file inclusion attack against the /index.php file with a partial filename in the "page" parameter, leading to code execution.
to cause local file inclusion resulting in code execution.
reference: reference:
- https://loopspell.medium.com/cve-2020-29227-unauthenticated-local-file-inclusion-7d3bd2c5c6a5 - https://loopspell.medium.com/cve-2020-29227-unauthenticated-local-file-inclusion-7d3bd2c5c6a5
- https://nvd.nist.gov/vuln/detail/CVE-2020-29227 - https://nvd.nist.gov/vuln/detail/CVE-2020-29227
@ -28,3 +27,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by mp on 2022/05/16