CVE-2020-36642 in jobeinfo

Zusammenfassung

von MITRE • 09.01.2023

A vulnerability was found in trampgeek jobe up to 1.6.x and classified as critical. This issue affects the function run_in_sandbox of the file application/libraries/LanguageTask.php. The manipulation leads to command injection. Upgrading to version 1.7.0 is able to address this issue. The name of the patch is 8f43daf50c943b98eaf0c542da901a4a16e85b02. It is recommended to upgrade the affected component. The identifier VDB-217553 was assigned to this vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Reservieren

06.01.2023

Veröffentlichung

09.01.2023

Moderieren

akzeptiert

Eintrag

VDB-217553

CPE

bereit

CWE

CWE-77 (bestätigt)

CVSS

9.8 (NVD)

EPSS

0.03686

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-36642
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-36642
CVE Details	https://www.cvedetails.com/cve/CVE-2020-36642/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!