CVE-2020-25538

HIGH

Cmsuno - Code Injection

Title source: rule

Description

An authenticated attacker can inject malicious code into "lang" parameter in /uno/central.php file in CMSuno 1.6.2 and run this PHP code in the web page. In this way, attacker can takeover the control of the server.

Exploits (1)

exploitdb WORKING POC

rubywebappsphp

https://www.exploit-db.com/exploits/49485

View Code ZIP pw:eip

References (2)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/161162/CMSUno-1.6.2-Remote-Code-Execution.html

[Exploit, Third Party Advisory] https://fatihhcelik.blogspot.com/2020/09/cmsuno-162-remote-code-execution_30.html

Scores

CVSS v3 8.8

EPSS 0.0452

EPSS Percentile 89.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-94

Status published

Products (1)

cmsuno_project/cmsuno 1.6.2

Published Nov 13, 2020

Tracked Since Feb 18, 2026