| Vulnerability | playSMS 1.4.3 RCE (CVE-2020-8644) |
|---|---|
| Chinese name | playSMS 1.4.3 远程命令执行漏洞 (CVE-2020-8644) |
| CVSS core | 9.5 |
| FOFA Query (click to view the results directly) | title=="playSMS" |
| Number of assets affected | 722 |
| Description | PlaySMS is a free and open source SMS gateway software. An input validation error vulnerability existed in PlaySMS versions prior to 1.4.3, which was caused by the program not sanitizing malicious strings. An attacker could exploit this vulnerability to execute arbitrary code. |
| Impact | An input validation error vulnerability existed in PlaySMS versions prior to 1.4.3, which was caused by the program not sanitizing malicious strings. An attacker could exploit this vulnerability to execute arbitrary code. |
