theme-core lib/utils.js command injection

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as critical, has been found in theme-core (unknown version). This issue affects some unknown processing in the library lib/utils.js. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1096539202/23/2021VulD...price_0day$0-$5ksee documentation02/23/2021accepted90
1096539102/23/2021VulD...cvss3_meta_tempscore6.9see documentation02/23/2021accepted90
1096539002/23/2021VulD...cvss3_meta_basescore7.3see documentation02/23/2021accepted90
1096538902/23/2021VulD...cvss3_vuldb_tempscore6.902/23/2021accepted90
1096538802/23/2021VulD...cvss3_vuldb_basescore7.302/23/2021accepted90
1096538702/23/2021VulD...cvss2_vuldb_tempscore6.802/23/2021accepted90
1096538602/23/2021VulD...cvss2_vuldb_basescore7.502/23/2021accepted90
1096538502/23/2021VulD...cvss3_vuldb_rcXderived from historical data02/23/2021accepted80
1096538402/23/2021VulD...cvss3_vuldb_rlXderived from historical data02/23/2021accepted80
1096538302/23/2021VulD...cvss2_vuldb_rcNDderived from historical data02/23/2021accepted80
1096538202/23/2021VulD...cvss2_vuldb_rlNDderived from historical data02/23/2021accepted80
1096538102/23/2021VulD...cvss2_vuldb_ePOCderived from vuldb v3 vector02/23/2021accepted80
1096538002/23/2021VulD...cvss2_vuldb_aiPderived from vuldb v3 vector02/23/2021accepted80
1096537902/23/2021VulD...cvss2_vuldb_iiPderived from vuldb v3 vector02/23/2021accepted80
1096537802/23/2021VulD...cvss2_vuldb_ciPderived from vuldb v3 vector02/23/2021accepted80
1096537702/23/2021VulD...cvss2_vuldb_auNderived from vuldb v3 vector02/23/2021accepted80
1096537602/23/2021VulD...cvss2_vuldb_acLderived from vuldb v3 vector02/23/2021accepted80
1096537502/23/2021VulD...cvss2_vuldb_avNderived from vuldb v3 vector02/23/2021accepted80
1096537402/23/2021VulD...date1614034800 (02/23/2021)02/23/2021accepted90
1096537302/23/2021VulD...cveCVE-2020-28432mitre.org02/23/2021accepted90

Interested in the pricing of exploits?

See the underground prices here!