CVE-2020-8639

HIGH

TestLink 1.9.20 - Authenticated Unrestricted File Upload via keywordsImport.php

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-8639. PoCs published by snovvcrash.

AI-analyzed exploit summary This exploit leverages an unrestricted file upload vulnerability in TestLink 1.9.20 to upload a PHP web shell, allowing remote command execution. It authenticates as a user, extracts necessary CSRF tokens, and uploads a malicious PHP file to a writable directory.

Description

An unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote attackers to execute arbitrary code by uploading a file with an executable extension. This allows an authenticated attacker to upload a malicious file (containing PHP code to execute operating system commands) to a publicly accessible directory of the application.

Exploits (1)

exploitdb WORKING POC
by snovvcrash · pythonwebappsphp
https://www.exploit-db.com/exploits/49561

This exploit leverages an unrestricted file upload vulnerability in TestLink 1.9.20 to upload a PHP web shell, allowing remote command execution. It authenticates as a user, extracts necessary CSRF tokens, and uploads a malicious PHP file to a writable directory.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: TestLink 1.9.20
Auth required
Prerequisites: Valid credentials for TestLink · Network access to the target · Writable directory (e.g., logs/)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 8.8
EPSS 0.1586
EPSS Percentile 96.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-434
Status published
Products (1)
testlink/testlink 1.9.20
Published Apr 03, 2020
Tracked Since Feb 18, 2026