Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-10257

EPSS 66.63% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-10257

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The ThemeREX Addons plugin before 2020-03-09 for WordPress lacks access control on the /trx_addons/v2/get/sc_layout REST API endpoint, allowing for PHP functions to be executed by any users, because includes/plugin.rest-api.php calls trx_addons_rest_get_sc_layout with an unsafe sc parameter.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
WordPress ThemeREX Addons 代码注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WordPress是WordPress基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。ThemeREX Addons是使用在其中的一个网站主题插件。 WordPress ThemeREX Addons 2020-03-09之前版本中存在安全漏洞,该漏洞源于/trx_addons/v2/get/sc_layout REST API端点缺少访问控制。攻击者可利用该漏洞执行PHP函数。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2020-10257

#POC DescriptionSource LinkShenlong Link
1ThemeREX Addons plugin before 2020-03-09 for WordPress contains an access control vulnerability in the /trx_addons/v2/get/sc_layout REST API endpoint, allowing any users to execute PHP functions because includes/plugin.rest-api.php calls trx_addons_rest_get_sc_layout with an unsafe sc parameter, letting attackers execute arbitrary PHP functions, exploit requires no authentication. https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-10257.yamlPOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2020-10257

登录查看更多情报信息。

Same Patch Batch · n/a · 2020-03-09 · 34 CVEs total

CVE-2020-9758LiveZilla Live Chat 跨站脚本漏洞
CVE-2016-6918Lexmark Markvision Enterprise 代码问题漏洞
CVE-2020-8987Avast AntiTrack和AVG Technologies Antitrack 信任管理问题漏洞
CVE-2016-1487Lexmark Markvision Enterprise 代码问题漏洞
CVE-2011-4538多款Lexmark产品信息泄露漏洞
CVE-2011-3269多款Lexmark产品信息泄露漏洞
CVE-2020-10192Munkireport 跨站脚本漏洞
CVE-2020-10191Munkireport 跨站脚本漏洞
CVE-2020-10190Munkireport SQL注入漏洞
CVE-2014-1634Magento Advanced Newsletter SQL注入漏洞
CVE-2020-10247MISP 跨站脚本漏洞
CVE-2020-10246MISP 跨站脚本漏洞
CVE-2019-19614Halvotec Information Services RAQuest 注入漏洞
CVE-2020-10244JPaseto 加密问题漏洞
CVE-2020-10250BWA Technology DiREX-Pro 操作系统命令注入漏洞
CVE-2020-10249BWA Technology DiREX-Pro 信息泄露漏洞
CVE-2020-10248BWA Technology DiREX-Pro 信息泄露漏洞
CVE-2016-11021D-Link DCS-930L 操作系统命令注入漏洞
CVE-2015-7338AcyMailing Joomla Component SQL注入漏洞
CVE-2015-7339JCE Joomla Component 代码问题漏洞

Showing top 20 of 34 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2020-10257

No comments yet

Leave a comment