Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Serendipity Remote Code Execution - CVE-2020-10964 - Vulnerability Database
Serendipity

Serendipity Remote Code Execution - CVE-2020-10964

Critical
Reference: CVE-2020-10964
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-10964
Title: Serendipity Remote Code Execution
Overview:

Serendipity before 2.3.4 on Windows allows remote attackers to execute arbitrary code because the filename of a renamed file may end with a dot. This file may then be renamed to have a .php filename.