What is CVE-2020-9465?

CVE-2020-9465 is a vulnerability in N/a. Published 2020-02-28.

Is CVE-2020-9465 known to be exploited?

6 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2020-9465

An issue was discovered in EyesOfNetwork eonweb 5.1 through 5.3 before 5.3-3. The eonweb web interface is prone to a SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the user_id…

EPSS: 0.849 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework
20142995/nuclei-templates
ARPSyndicate/cvemon
ArianeBlow/EyesOfNetwork-vuln-checker
cyb3r-w0lf/nuclei-template-collection
h4knet/eonrce

References

github.com/EyesOfNetworkCommunity/eonweb/issues/51 (x_refsource_MISC)
github.com/EyesOfNetworkCommunity/eonweb/releases/tag/5.3-3 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-9465?: CVE-2020-9465 is a vulnerability in N/a. Published 2020-02-28.
Is CVE-2020-9465 known to be exploited?: 6 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.