CVE-2020-23934

HIGH

RiteCMS 2.2.1 - Authenticated OS Command Execution via Filemanager PHP Upload

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2020-23934. PoCs published by Enes Özeser, H0j3n.

AI-analyzed exploit summary This exploit leverages an authenticated file upload vulnerability in RiteCMS 2.2.1 to achieve remote code execution by uploading a malicious PHP shell. The attacker can then execute arbitrary commands via HTTP requests to the uploaded file.

Description

An issue was discovered in RiteCMS 2.2.1. An authenticated user can directly execute system commands by uploading a php web shell in the "Filemanager" section.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Enes Özeser · textwebappsphp

https://www.exploit-db.com/exploits/48636

View Code ZIP pw:eip

This exploit leverages an authenticated file upload vulnerability in RiteCMS 2.2.1 to achieve remote code execution by uploading a malicious PHP shell. The attacker can then execute arbitrary commands via HTTP requests to the uploaded file.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: RiteCMS 2.2.1

Auth required

Prerequisites: Valid credentials for RiteCMS admin panel · Access to the file upload functionality

MITRE ATT&CK

T1105 - Ingress Tool Transfer T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 1 stars

by H0j3n · poc

https://github.com/H0j3n/CVE-2020-23934

View Code ZIP pw:eip

This exploit targets CVE-2020-23934, an authenticated remote code execution vulnerability in RiteCMS v2.2.1. It uploads a malicious PHP file via the filemanager functionality, which executes a reverse shell payload upon access.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: RiteCMS v2.2.1

Auth required

Prerequisites: Valid credentials for RiteCMS · Network access to the target · Listener set up for reverse shell

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://www.exploit-db.com/exploits/48636

Third Party Advisory x_refsource_misc

https://github.com/enesozeser/Vulnerabilities/blob/master/CVE-2020-23934

View Writeup ZIP pw:eip

Scores

CVSS v3 8.8

EPSS 0.1596

EPSS Percentile 96.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-78

Status published

Products (1)

ritecms/ritecms 2.2.1

Published Aug 18, 2020

Tracked Since Feb 18, 2026