Privilege Escalation Affecting monox.cms.runtime Open this link in a new tab package, versions [0,]


0.0
medium
  • Exploit Maturity

    Proof of concept

  • Attack Complexity

    Low

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • snyk-id

    SNYK-DOTNET-MONOXCMSRUNTIME-567872

  • published

    29 Apr 2020

  • disclosed

    29 Apr 2020

  • credit

    Unknown

How to fix?

There is no fixed version for MonoX.CMS.Runtime.

Overview

MonoX.CMS.Runtime is a Free ASP.NET CMS and Social Networking Platform.

Affected versions of this package are vulnerable to Privilege Escalation. It allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program.