Skip to content
logo

RedPacket Security

InfoSec News & Tutorials

  • Home
  • News
  • Tools
  • Vulnerabilities
  • Hack The Box
  • Tutorials
  • Smart Home
  • Product Review

CVE-2020-13936

CVE prog
Vulnerabilities 

CVE-2020-13936

March 19, 2021 admin CONFIRM, CVE, CVE-2020-13936, Mailing List, vulnerability

An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.

Read more
CVE prog
Vulnerabilities 

CVE-2020-13936

March 17, 2021 admin CONFIRM, CVE, CVE-2020-13936, Mailing List, vulnerability

An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.

Read more
Copyright © 2021 RedPacket Security. All rights reserved.
Theme: ColorMag by ThemeGrill. Powered by WordPress.
pixel