CVE-2020-13167

CRITICAL EXPLOITED NUCLEI

Netsweeper < 6.4.3 - Unauthenticated Remote Code Execution via webadmin/tools/unixlogin.php

Title source: llm

Exploitation Summary

CVE-2020-13167 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including wvu, including a Metasploit module exploits/linux/http/netsweeper_webadmin_unixlogin. A Nuclei detection template is also available.

AI-analyzed exploit summary This Metasploit module exploits a Python code injection vulnerability in Netsweeper WebAdmin's unixlogin.php script, allowing remote code execution as root. Authentication is bypassed via a whitelisted Referer header, and the exploit injects payloads into the password field.

Description

Netsweeper through 6.4.3 allows unauthenticated remote code execution because webadmin/tools/unixlogin.php (with certain Referer headers) launches a command line with client-supplied parameters, and allows injection of shell metacharacters.

Exploits (1)

metasploit WORKING POC EXCELLENT

by wvu · rubypocpython

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/netsweeper_webadmin_unixlogin.rb

View Code ZIP pw:eip

This Metasploit module exploits a Python code injection vulnerability in Netsweeper WebAdmin's unixlogin.php script, allowing remote code execution as root. Authentication is bypassed via a whitelisted Referer header, and the exploit injects payloads into the password field.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Netsweeper WebAdmin <= 6.4.4

No auth needed

Prerequisites: Network access to the target's web interface · Python payload compatible with the target environment

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Netsweeper <=6.4.3 - Python Code Injection

CRITICALby dwisiswant0

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://ssd-disclosure.com/ssd-advisory-netsweeper-preauth-rce/

Scores

CVSS v3 9.8

EPSS 0.9391

EPSS Percentile 99.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2023-12-11

CWE

CWE-78

Status published

Products (1)

netsweeper/netsweeper < 6.4.3

Published May 19, 2020

Tracked Since Feb 18, 2026