WEB PlaySMS index.php Unauthenticated Template Injection Code Execution (CVE-2020-8644)

Rule ID

1136806

Severity

Critical

Description

There is a preauth Server-Side Template Injection vulnerability that leads to remote code execution in PlaySMS before version 1.4.3.

Impact

Remote command execution

Recommendation

Update vendor's patch.

IPS Category

Web threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2020-8644

msf

T1059

T0853

Keywords

N/A

Date Created

2020/04/08

Last Updated

2025/06/26

This website uses cookies to ensure you get the best experience on our website.

Learn more