CVE-2020-15227

HIGH EXPLOITED NUCLEI

Nette <2.0.19, 2.1.13, 2.2.10, 2.3.14, 2.4.16, 3.0.6 - Code Injection

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2020-15227 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 3 public exploits from researchers including hu4wufu, filipsedivy, Langriklol. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit targets CVE-2020-15227, a code injection vulnerability in Nette Framework's `nette.micro` component. It achieves RCE by injecting a reverse shell command via the `callback` parameter, establishing a TCP connection back to the attacker.

Description

Nette versions before 2.0.19, 2.1.13, 2.2.10, 2.3.14, 2.4.16, 3.0.6 are vulnerable to an code injection attack by passing specially formed parameters to URL that may possibly leading to RCE. Nette is a PHP/Composer MVC Framework.

Exploits (3)

nomisec WORKING POC 20 stars
by hu4wufu · remote
https://github.com/hu4wufu/CVE-2020-15227

This exploit targets CVE-2020-15227, a code injection vulnerability in Nette Framework's `nette.micro` component. It achieves RCE by injecting a reverse shell command via the `callback` parameter, establishing a TCP connection back to the attacker.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Nette Framework (nette/application < 2.2.10, 2.3.14, 2.4.16, 3.0.6; nette/nette < 2.0.19, 2.1.13)
No auth needed
Prerequisites: Target running vulnerable Nette Framework version · Network access to the target's web service · Attacker-controlled listener for reverse shell
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by filipsedivy · remote
https://github.com/filipsedivy/CVE-2020-15227

This repository contains a Python-based proof-of-concept exploit for CVE-2020-15227, which targets a potential remote code execution vulnerability in Nette Framework applications. The exploit tests for vulnerabilities in file writing functions and shell execution by generating unique checksums and verifying their presence in server responses.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Nette Framework (nette/application < 3.0.6, < 2.4.16, < 2.3.14, < 2.2.10; nette/nette < 2.1.13, < 2.0.19)
No auth needed
Prerequisites: Target application must be using a vulnerable version of Nette Framework · Target must have the vulnerable endpoint exposed
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by Langriklol · remote
https://github.com/Langriklol/CVE-2020-15227

This repository contains a functional exploit and autofixer for CVE-2020-15227, a code injection vulnerability in Nette Framework's nette.micro component. The exploit achieves RCE via a reverse shell, while the autofixer attempts to patch the vulnerability by updating Composer dependencies.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Nette Framework (nette/application < 2.2.10, 2.3.14, 2.4.16, 3.0.6; nette/nette < 2.0.19, 2.1.13)
No auth needed
Prerequisites: Target server running vulnerable Nette Framework version · Network access to the target server · Outbound connectivity from target to attacker for reverse shell
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Nette Framework - Remote Code Execution
CRITICALVERIFIEDby becivells
FOFA: app="nette-Framework" || app="nette-framework"

References (4)

Core 4
Core References
Third Party Advisory x_refsource_misc
https://packagist.org/packages/nette/application
Third Party Advisory x_refsource_misc
https://packagist.org/packages/nette/nette
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2021/04/msg00003.html

Scores

CVSS v3 8.7
EPSS 0.9379
EPSS Percentile 99.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

Details

VulnCheck KEV 2020-10-12
CWE
CWE-74 CWE-94
Status published
Products (3)
debian/debian_linux 9.0
nette/application 2.0.0 - 2.0.19
nette/application 2.2.0 - 2.2.10Packagist
Published Oct 01, 2020
Tracked Since Feb 18, 2026