CVE-2020-25538

HIGH

Cmsuno - Code Injection

Title source: rule

Description

An authenticated attacker can inject malicious code into "lang" parameter in /uno/central.php file in CMSuno 1.6.2 and run this PHP code in the web page. In this way, attacker can takeover the control of the server.

Exploits (1)

exploitdb WORKING POC

rubywebappsphp

https://www.exploit-db.com/exploits/49485

View on exploitdb

References (2)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/161162/CMSUno-1.6.2-Remote-Code-Execution.html

[Exploit, Third Party Advisory] https://fatihhcelik.blogspot.com/2020/09/cmsuno-162-remote-code-execution_30.html

Scores

CVSS v3 8.8

EPSS 0.0452

EPSS Percentile 88.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-94

Status published

Affected Products (1)

cmsuno_project/cmsuno

Timeline

Published Nov 13, 2020

Tracked Since Feb 18, 2026