What is CVE-2020-27191?

CVE-2020-27191 is a vulnerability in N/a. Published 2020-11-16.

Is CVE-2020-27191 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2020-27191

LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted string in the index.php f1 variable, aka Local File Inclusion. NOTE: This vulnerability only affects products that are no longer support…

EPSS: 0.799 (99.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

20142995/nuclei-templates
ARPSyndicate/cve-scores
ARPSyndicate/kenzer-templates

References

lionwiki.0o.cz/index.php (x_refsource_MISC)
www.junebug.site/blog/cve-2020-27191-lionwiki-3-2-11-lfi (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-27191?: CVE-2020-27191 is a vulnerability in N/a. Published 2020-11-16.
Is CVE-2020-27191 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.