CVE-2020-7357P1CRITICALCVSS 9.9PoC≥ 9.0 Build 14917, ≤ 9.0 Build 149172020-08-06
CVE-2020-7357 [CRITICAL] CWE-78 CVE-2020-7357: Cayin CMS suffers from an authenticated OS semi-blind command injection vulnerability using default
Cayin CMS suffers from an authenticated OS semi-blind command injection vulnerability using default credentials. This can be exploited to inject and execute arbitrary shell commands as the root user through the 'NTP_Server_IP' HTTP POST parameter in system.cgi page. This issue affects several branches and versions of the CMS application, including CME
nvd