Skip to main content
bmali
Staff
Staff
April 20, 2023

Outbreak Alert: ThinkPHP Remote Code Execution Vulnerability

  • April 20, 2023
  • 0 replies
  • 371 views

FortiRecon provides outside-in coverage for risks toward customers. 

  

External Attack Surface Management helps customers to identify exposure to known and unknown enterprise assets and associated vulnerabilities across the enterprise. 

  

The Vulnerability Intelligence Module under Adversary Centric Intelligence (ACI) provides a realistic view of the impact of the vulnerability based upon chatter and discussion of the same across various external sources such as Darkweb, social media, News / Blogs etc.

 

CVE ID 

CVE-2019-9082

CVE Title 

Open Source BMS Command Execution

CVE Severity 

High

ACI Reporting Coverage 

2 Reports (TECHINT) 

Additional References 

  • 4 articles referencing possibly working exploit(s) for this vulnerability. 
  • 1 article referencing this CVE on the security blog. 
  • 16 mentions on social media for this vulnerability. 

EASM Scanner 

No 

 

 

 

CVE ID 

CVE-2018-20062

CVE Title 

NoneCms Filter Parameter Code Execution

CVE Severity 

High

ACI Reporting Coverage 

3 Reports (OSINT, TECHINT) 

Additional References 

  • 1 Darknet mention for this vulnerability.
  • 2 articles referencing possibly working exploit(s) for this vulnerability. 
  • 2 public code repositories containing possible POC exploits.
  • 43 mentions on social media for this vulnerability. 

EASM Scanner 

No