.. / CVE-2020-13851

Exploit for Artica Pandora FMS 7.44 - Remote Code Execution (CVE-2020-13851)

Description:

Artica Pandora FMS 7.44 allows remote command execution via the events feature.

Nuclei Template

View the template here CVE-2020-13851.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2020/CVE-2020-13851.yaml
Copy

References:

https://www.coresecurity.com/advisories
https://nvd.nist.gov/vuln/detail/CVE-2020-13851
https://packetstormsecurity.com/files/158390/Pandora-FMS-7.0-NG-7XX-Remote-Command-Execution.html
https://github.com/hadrian3689/pandorafms_7.44