cbcvebase.
CVE-2020-27191
published 2020-11-16

CVE-2020-27191: LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted string in the index.php f1 variable, aka Local File…

PriorityP357high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
8.36%
94.3th percentile
LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted string in the index.php f1 variable, aka Local File Inclusion. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Affected

1 ranges
VendorProductVersion rangeFixed in
lionwikilionwiki< 3.2.123.2.12

Detection & IOCsextracted from sources · hover to see the quote

path/index.php
  • A successful LFI exploitation response will return HTTP 200 and contain the Unix passwd file pattern root:[x*]:0:0:
  • The vulnerability is unauthenticated — no session or credentials are required to trigger the LFI via the f1 variable in index.php with action=edit and restore=1
  • ·This vulnerability only affects LionWiki versions prior to 3.2.12, which is an end-of-life product no longer supported by the maintainer

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.